IETF Logo Mail Archive

Re: [Resolverless-dns] Paper on Resolver-less DNS

Eric Orth <ericorth@google.com> Mon, 19 August 2019 16:29 UTC

Return-Path: <ericorth@google.com>
X-Original-To: resolverless-dns@ietfa.amsl.com
Delivered-To: resolverless-dns@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29300120862 for <resolverless-dns@ietfa.amsl.com>; Mon, 19 Aug 2019 09:29:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.5
X-Spam-Level:
X-Spam-Status: No, score=-17.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uFSgvZT5EfhS for <resolverless-dns@ietfa.amsl.com>; Mon, 19 Aug 2019 09:29:13 -0700 (PDT)
Received: from mail-wr1-x431.google.com (mail-wr1-x431.google.com [IPv6:2a00:1450:4864:20::431]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 12B1B12082E for <resolverless-dns@ietf.org>; Mon, 19 Aug 2019 09:29:12 -0700 (PDT)
Received: by mail-wr1-x431.google.com with SMTP id y8so9355207wrn.10 for <resolverless-dns@ietf.org>; Mon, 19 Aug 2019 09:29:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=PGpLy4IAZNJ9SbBVrwFSn59ybV+MCaj7J3wuvl4ZshE=; b=YGjeWEF+1ZALh4agd7Aki16N9Hp92Vy/UQULGz/GyaFoCVr+68aPDGvQUxVIm+LC4w 57uTZqo4JsfsyAkGKsqllfLh3Rn0nmuLuWBnmErpsHLqfPAOXSHmYfWoZaIspJMx6qju 1IT6ntxnKPJnTYEt76sf38lbGoBGudeR34ClX63AivkUPwz7HFalcRvEa1WEChsD7TBi qOJC9dgfqW3EApS0PWzxccOHo0Z1oe82Mht85jOJ88xTPu67IcraFg0zOtxSSDojP8nI C2kBcZ2FGq2nxXRUB3VGp87NBly6lrn3I/r3OS7D9UG0XZ2kqXVEmsWQgGj6L2mchSPn doSQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=PGpLy4IAZNJ9SbBVrwFSn59ybV+MCaj7J3wuvl4ZshE=; b=NppGJQhLo6yFzN283Ll+lK0sYKl1YOcqArzKBjMggG8WU/rgNxPWWgP5/L3jF13MCe X23D0iH1CGOX+YqmxE91DT3ltkajLzGejf1dRnZarlKyhhsx12gZirt+SVGBBn2DiDtW 2u5s3Kv/hbIq2wgw7QExBihv6lY+hducf3+gILFthPhKb6CmPYyiZwjqxlBZWDXDjVV3 qV6bUduw4hzEMIA2v/nTHfA17rEMgLG4l4k2/n+3sv4aw81tm7xxom6SLF1GqDhszOEv Ow4rq0plLmDM814u4QTSNopaK+S0iQ3vYbyCcgp8o+XrcN7KjGJonqiRjUqd9v6cWoFW t8hA==
X-Gm-Message-State: APjAAAW+DgKKJN9OkvctXwzLjn6M7PlKyg8IAvFi3eGunLBS8C7VhBL3 aQj0rknfSJ3jBuO76rzw/s7zb0+sV49Gusj91MGZcQ==
X-Google-Smtp-Source: APXvYqz3e4X2aQzM7NvuxfYcyMZ9XU4u9NPIXLZSK+WELZ/RmCUeLBRa6Q6IO0w/LGP0UC0s3+zszn9W93FktNAJXaE=
X-Received: by 2002:a5d:634c:: with SMTP id b12mr27920780wrw.127.1566232150151; Mon, 19 Aug 2019 09:29:10 -0700 (PDT)
MIME-Version: 1.0
References: <CAHbrMsBhR1yaLxQk7wZk54Jdf5nvkS03KC3UTae0Famu2+SV8g@mail.gmail.com> <16840451.Gnsi7N2eSB@linux-9daj> <27027.1565991325@vindemiatrix.encs.concordia.ca> <9323236.5EVOHOzQma@linux-9daj> <24529.1566231048@vindemiatrix.encs.concordia.ca>
In-Reply-To: <24529.1566231048@vindemiatrix.encs.concordia.ca>
From: Eric Orth <ericorth@google.com>
Date: Mon, 19 Aug 2019 12:28:58 -0400
Message-ID: <CAMOjQcFmqs-s19nd+i-oeuq4+8zdWVihj6=oGnXC+YL50LxAtg@mail.gmail.com>
To: Anne Bennett <anne@encs.concordia.ca>
Cc: resolverless-dns@ietf.org
Content-Type: multipart/alternative; boundary="000000000000f2833905907ad659"
Archived-At: <https://mailarchive.ietf.org/arch/msg/resolverless-dns/9cCIpF76CEHUMiwBUM7InKgxbJU>
Subject: Re: [Resolverless-dns] Paper on Resolver-less DNS
X-BeenThere: resolverless-dns@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Resolverless DNS <resolverless-dns.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/resolverless-dns/>
List-Post: <mailto:resolverless-dns@ietf.org>
List-Help: <mailto:resolverless-dns-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Aug 2019 16:29:16 -0000

On Mon, Aug 19, 2019 at 12:10 PM Anne Bennett <anne@encs.concordia.ca>
wrote:

> It seems to me straightforward to use this mechanism to supply
> the information *that* a resolver applies filtering, but I don't
> see how it could reasonably *describe* the filtering, since
> such a description would essentially almost *be* the filtering.
>

But that could still be very valuable.  If (and this is a big if) many
recursive resolvers use this mechanism to state whether or not they do
significant filtering, then for those that report that they do not, this
becomes a strong signal to clients that resolverless DNS will not bypass
any filtering.

v2.20.0 | Report a Bug | By Email