XQID (Re: Forgery Resistance phase #2 )
Paul Vixie <vixie@isc.org> Wed, 30 July 2008 17:45 UTC
Return-Path: <owner-namedroppers@ops.ietf.org>
X-Original-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7CCE928C39E; Wed, 30 Jul 2008 10:45:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.797
X-Spam-Level:
X-Spam-Status: No, score=0.797 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, MISSING_HEADERS=1.292, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id On-AVcfbWQLK; Wed, 30 Jul 2008 10:45:47 -0700 (PDT)
Received: from psg.com (psg.com [IPv6:2001:418:1::62]) by core3.amsl.com (Postfix) with ESMTP id 624303A6876; Wed, 30 Jul 2008 10:45:47 -0700 (PDT)
Received: from majordom by psg.com with local (Exim 4.69 (FreeBSD)) (envelope-from <owner-namedroppers@ops.ietf.org>) id 1KOFaP-000MmU-Jy for namedroppers-data@psg.com; Wed, 30 Jul 2008 17:35:41 +0000
Received: from [66.92.146.20] (helo=stora.ogud.com) by psg.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69 (FreeBSD)) (envelope-from <namedroppers@stora.ogud.com>) id 1KOFaK-000Mle-Mw for namedroppers@ops.ietf.org; Wed, 30 Jul 2008 17:35:39 +0000
Received: from stora.ogud.com (localhost [127.0.0.1]) by stora.ogud.com (8.14.2/8.14.2) with ESMTP id m6UHZYxw046366 for <namedroppers@ops.ietf.org>; Wed, 30 Jul 2008 13:35:34 -0400 (EDT) (envelope-from namedroppers@stora.ogud.com)
Received: (from namedroppers@localhost) by stora.ogud.com (8.14.2/8.14.2/Submit) id m6UHZYer046365 for namedroppers@ops.ietf.org; Wed, 30 Jul 2008 13:35:34 -0400 (EDT) (envelope-from namedroppers)
Received: from [2001:4f8:3:bb:230:48ff:fe5a:2f38] (helo=nsa.vix.com) by psg.com with esmtps (TLSv1:CAMELLIA256-SHA:256) (Exim 4.69 (FreeBSD)) (envelope-from <vixie@vix.com>) id 1KNt3b-0001kE-4p for namedroppers@ops.ietf.org; Tue, 29 Jul 2008 17:32:21 +0000
Received: from nsa.vix.com (localhost [127.0.0.1]) by nsa.vix.com (Postfix) with ESMTP id 61694A9D21; Tue, 29 Jul 2008 17:32:11 +0000 (UTC) (envelope-from vixie@nsa.vix.com)
From: Paul Vixie <vixie@isc.org>
cc: 'Ólafur Guðmundsson /DNSEXT chair' <ogud@ogud.com>, namedroppers@ops.ietf.org
Subject: XQID (Re: Forgery Resistance phase #2 )
In-Reply-To: Your message of "Tue, 29 Jul 2008 15:28:21 +0200." <027b01c8f17e$f99b0a80$ecd11f80$@com>
References: <200807281555.m6SFsxAO021711@stora.ogud.com> <027b01c8f17e$f99b0a80$ecd11f80$@com>
X-Mailer: MH-E 8.0.3; nil; GNU Emacs 22.2.1
Date: Tue, 29 Jul 2008 17:32:11 +0000
Message-ID: <1135.1217352731@nsa.vix.com>
MIME-Version: 1.0
X-Vix-MailScanner-Information: Please contact the ISP for more information
X-MailScanner-ID: 61694A9D21.01A81
X-Vix-MailScanner: Found to be clean
X-Vix-MailScanner-From: vixie@vix.com
X-Scanned-By: MIMEDefang 2.64 on 66.92.146.20
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
List-ID: <namedroppers.ops.ietf.org>
[ Moderators note: Post was moderated, either because it was posted by a non-subscriber, or because it was over 20K. With the massive amount of spam, it is easy to miss and therefore delete relevant posts by non-subscribers. Please fix your subscription addresses. ] > I think my XQID suggestion (http://www.jhsoft.com/dns-xqid.htm) which by > the way seems like a even better idea in light of the Kaminsky bug, is > somewhere in your list already. if we can amend the edns spec to require that for the XQID option, a reply without XQID will cause the transaction to be repeated several times across all of the zone's nameservers, with a different random UDP port and 16-bit QID each time, then i will support the XQID proposal. (this logic for repeat-on-suspicion is more or less what we're recommending in 0x20, and it's possible that if there are enough 0x20 bits available, then an XQID could be made optional for that transaction.) -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- to unsubscribe send a message to namedroppers-request@ops.ietf.org with the word 'unsubscribe' in a single line as the message text body. archive: <http://ops.ietf.org/lists/namedroppers/>
- Re: Forgery Resistance phase #2 Paul Hoffman
- Re: Forgery Resistance phase #2 Olafur Gudmundsson
- Forgery Resistance phase #2 Ólafur Guðmundsson /DNSEXT chair
- Re: Forgery Resistance phase #2 Alex Bligh
- RE: Forgery Resistance phase #2 Jesper G. Høy
- XQID (Re: Forgery Resistance phase #2 ) Paul Vixie
- Re: XQID (Re: Forgery Resistance phase #2 ) Jelte Jansen
- Re: XQID (Re: Forgery Resistance phase #2 ) Paul Vixie
- Re: XQID (Re: Forgery Resistance phase #2 ) Jelte Jansen
- Re: XQID (Re: Forgery Resistance phase #2 ) Paul Vixie
- Re: XQID (Re: Forgery Resistance phase #2 ) bert hubert