IETF Logo Mail Archive

Re: [dnsext] we need help to make names the same, was draft-yao-dnsext-identical-resolution-02 comment

Danny Mayer <mayer@gis.net> Thu, 17 February 2011 13:38 UTC

Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 265553A6CAE; Thu, 17 Feb 2011 05:38:19 -0800 (PST)
X-Original-To: dnsext@core3.amsl.com
Delivered-To: dnsext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4637F3A6C8B for <dnsext@core3.amsl.com>; Thu, 17 Feb 2011 05:38:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7VS+VK+yDDdK for <dnsext@core3.amsl.com>; Thu, 17 Feb 2011 05:38:16 -0800 (PST)
Received: from mail1.ntp.org (mail1.ntp.org [IPv6:2001:4f8:fff7:1::5]) by core3.amsl.com (Postfix) with ESMTP id 19ED83A6CC3 for <dnsext@ietf.org>; Thu, 17 Feb 2011 05:38:15 -0800 (PST)
Received: from [198.22.153.9] (helo=[10.60.111.90]) by mail1.ntp.org with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.72 (FreeBSD)) (envelope-from <mayer@gis.net>) id 1Pq43q-0003q6-UJ; Thu, 17 Feb 2011 13:38:34 +0000
Message-ID: <4D5D24F3.70206@gis.net>
Date: Thu, 17 Feb 2011 08:38:59 -0500
From: Danny Mayer <mayer@gis.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7
MIME-Version: 1.0
To: Mark Andrews <marka@isc.org>
References: <20110216032120.43474.qmail@joyce.lan><alpine.LSU.2.00.1102161143180.5244@hermes-1.csi.cam.ac.uk> <20110216212930.57D64A3F344@drugs.dv.isc.org>
In-Reply-To: <20110216212930.57D64A3F344@drugs.dv.isc.org>
X-SA-Exim-Connect-IP: 198.22.153.9
X-SA-Exim-Rcpt-To: marka@isc.org, dot@dotat.at, johnl@iecc.com, dnsext@ietf.org
X-SA-Exim-Mail-From: mayer@gis.net
X-SA-Exim-Version: 4.2
X-SA-Exim-Scanned: Yes (on mail1.ntp.org)
Cc: John Levine <johnl@iecc.com>, dnsext@ietf.org
Subject: Re: [dnsext] we need help to make names the same, was draft-yao-dnsext-identical-resolution-02 comment
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: mayer@gis.net
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org

On 2/16/2011 4:29 PM, Mark Andrews wrote:
> 
> In message <alpine.LSU.2.00.1102161143180.5244@hermes-1.csi.cam.ac.uk>, Tony Fi
> nch writes:
>> On Wed, 16 Feb 2011, John Levine wrote:
>>>
>>> It would not be absurd to argue that the most reasonable way to solve
>>> the provisioning issues is for the SMTP and HTTP servers to ask the
>>> DNS what the canonical name for an otherwise unknown name is, so those
>>> servers are just provisioned with the canonical name and an "allow
>>> variants" flag.
>>
>> It used to be the case that SMTP servers would rewrite domains in
>> addresses by replacing a CNAME owner with its target. See RFC 1123 section
>> 5.2.2. This requirement no longer exists but there is still code out there
>> that supports it. I think it would be quite reasonable to add a feature
>> for optional cname-based canonicalization to an MTA. (You can probably do
>> it now using Exim's configuration language, though it'll probably be a bit
>> ugly.)
>>
>> There is also some HTTP server code out there that hooks into the DNS for
>> server name canonicalization - see Apache's UseCanonicalName DNS option,
>> which is my fault. It uses reverse DNS lookups (it was designed for
>> IP-based virtual hosting) but I don't think it would be hard to do
>> something similar based on CNAME records.
>>
>> Note that server features like this are nice to have but not absolutely
>> necessary.
> 
> HTTP abuses CNAME.  If HTTP clients where following the design
> principles behind CNAME then the HTTP request would be re-written
> when a CNAME was seen.  Instead they ignored the CNAME and as a
> result effectively treated it like a single MX record which is wrong
> and has caused problems all along.
> 
> When we actually want to use CNAMEs for what they are designed to
> be used for we find HTTP has hijacked them.
> 
> There still isn't a formal RFC for SRV with HTTP.

Even if there were I'm not convinced that it would be useful since there
is no way on the RHS to specify the path. It can give you a name, a
port, a weight and a priority but no path. There was a proposal for a
URL RR but I cannot find it right now and I don't think the wg is
considering it, at least it's not on the document list.

Danny
_______________________________________________
dnsext mailing list
dnsext@ietf.org
https://www.ietf.org/mailman/listinfo/dnsext

v2.23.0 | Report a Bug | By Email