IETF Logo Mail Archive

Re: [rtcweb] IP handling: Using mDNS names for host candidates

Justin Uberti <juberti@google.com> Tue, 12 June 2018 23:37 UTC

Return-Path: <juberti@google.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 65AB0130EF3 for <rtcweb@ietfa.amsl.com>; Tue, 12 Jun 2018 16:37:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -18.209
X-Spam-Level:
X-Spam-Status: No, score=-18.209 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X8Q8YSdgJSH6 for <rtcweb@ietfa.amsl.com>; Tue, 12 Jun 2018 16:36:57 -0700 (PDT)
Received: from mail-io0-x22a.google.com (mail-io0-x22a.google.com [IPv6:2607:f8b0:4001:c06::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E00DE129619 for <rtcweb@ietf.org>; Tue, 12 Jun 2018 16:36:56 -0700 (PDT)
Received: by mail-io0-x22a.google.com with SMTP id k3-v6so1449310iog.3 for <rtcweb@ietf.org>; Tue, 12 Jun 2018 16:36:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8A49MY66ZvadF3Fscim6ZAnpjTAoGVQeTO8dIbvAdK8=; b=ezuuBxZIlHBZihCOu5F6T99T+aas1N5C5xelVMSCb3syVYPXW6Y4W/rPlBHV460Ww/ w1OrdppFi+z65gbbvwHHcU3BDfxk9EIaAV0y/KcBe7Kzm6A9Iy6p5UHq0R/Kj53Rbhao Dur+QM1nNSR5mBCQjg51ocMA4RE3/wzh5aiksAPjOx89Mf31L2UK5uz+HpJ9GWx9rzBB 024VvvOBHW9mMoVlyRj1TRmKDmVl7f1eHahrXFBH9FAoJC36suRONrQAlH3GWa/wcx72 WZtVQm+Pgx38plinboUWMhNWSUabBX0RvuK8oAxmSyOWgMrwAp7sCCgEbatcXzO3TcS8 mV/A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8A49MY66ZvadF3Fscim6ZAnpjTAoGVQeTO8dIbvAdK8=; b=pV7ZEsjUlff59d1mB5vfJXAQslHB2Tn3JAOKAdyKCT4sWvTAwx7nCpT4MpjImOfaOi 2RxW5PNzFjNNKkHCx4h9UVRtH/vAPDM7JRyLl8bFpyJcRqd9f4I8IAXuEkV1QWyBcP0F ZNCkJzP2BB7n5RTNRWxquNJqts61P/IWtmMkEXzuzMwoKyQJnZkPu7n4FfiCX2DkeoDt leD+lI88JyhDNtRaqla2+McgT1VJRp4OPqeX6cw2lBpEv82chEftx1Kaf/U02LLS2QoM l3XIPtGs6mJZfPwyQSJCbBmU+WCDSl5zC7Onh5iOyQ9CcAZ0ThJ5rkNj9tBOyWWGvG/r cMAg==
X-Gm-Message-State: APt69E1CWBukfAtCNJn4QnZNts3HtGDvxYXWeDjAnpvHm1YLV/uVULge zy0KFzchkSlEO9jUM5xL/gdDrQmjZRqIGaRSgSnNCQ==
X-Google-Smtp-Source: ADUXVKLlkTQ8mCEYsh+3gUOGehfM/4K3SMEqkoXz7MS4OKFHECcixBGL1gFbr1O+VphQMqawWvLD5mJTZ0NnFT0OT/c=
X-Received: by 2002:a6b:3245:: with SMTP id y66-v6mr2487938ioy.87.1528846615719; Tue, 12 Jun 2018 16:36:55 -0700 (PDT)
MIME-Version: 1.0
References: <CAOJ7v-2FQ3yfyfmFY8MT17nTFUvsNyixKuXXeT-Rq7zVQKBMnA@mail.gmail.com> <CA+9kkMACFhqucwx6pgQS7mqzJBcE09Q6HWFsUq5=BbstAQz+nw@mail.gmail.com> <14D68A0E-860B-4546-AA68-FD319A2FFAEE@nostrum.com> <CAOJ7v-3SHcmkDQtM8hyGcUg1N6uM1oU_0AOHtM=HERwRj9d4zg@mail.gmail.com>
In-Reply-To: <CAOJ7v-3SHcmkDQtM8hyGcUg1N6uM1oU_0AOHtM=HERwRj9d4zg@mail.gmail.com>
From: Justin Uberti <juberti@google.com>
Date: Tue, 12 Jun 2018 16:36:44 -0700
Message-ID: <CAOJ7v-3sJzOLiH_EQc6NQM3NProD+4m=rB23i9Pw=vbLTLm+vw@mail.gmail.com>
To: Adam Roach <adam@nostrum.com>
Cc: Ted Hardie <ted.ietf@gmail.com>, RTCWeb IETF <rtcweb@ietf.org>, yfablet@apple.com
Content-Type: multipart/alternative; boundary="00000000000072bc68056e7a5741"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtcweb/P0F6DzplmGQuzafvUXEwmz_DpT8>
Subject: Re: [rtcweb] IP handling: Using mDNS names for host candidates
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jun 2018 23:37:04 -0000

Given the general support here, I'll start writing up a PR to incorporate
the aforementioned changes, with the goal to avoid emitting private IPv4
addresses in the default mode.

On Tue, Jun 12, 2018 at 12:14 PM Justin Uberti <juberti@google.com> wrote:

> One option could be that Mode 2 incorporates RFC 4941 stateless IPv6
> addresses, if supported. Otherwise, mDNS is used. This mode would never
> include RFC 1918 IPv4 addresses.
>
> This would work well in more environments and still provide significant
> privacy improvements.
>
> On Tue, Jun 12, 2018 at 12:08 PM Adam Roach <adam@nostrum.com> wrote:
>
>> I’d like to point out that, while this works fine in most residential
>> settings, it’s pretty broken for multi-segment enterprise deployments.
>>
>> /a
>>
>> On Jun 12, 2018, at 11:55, Ted Hardie <ted.ietf@gmail.com> wrote:
>>
>> On Tue, Jun 12, 2018 at 2:40 AM, Justin Uberti <
>> juberti=40google.com@dmarc.ietf.org> wrote:
>>
>>>
>>> This is a significant improvement and I think we will want to
>>> incorporate this suggestion. Is this something we could do as part of this
>>> WGLC, or should we look for another option?
>>>
>>>
>> Without having cleared this with Cullen or Sean, my personal chair-hat
>> opinion is that we can do this in WGLC.  If a new technical solution is
>> found during WG last call, I see no reason not to incorporate it.
>>
>> That said, I see two no-hats issues that will want pretty strong text.
>> The first is that these are really UUIDs, not traditional mDNS names.
>> We'll need text to strongly discourage the re-use of an existing mDNS name,
>> since those can leak other information.  Second, we'll need text on what to
>> do if this name can't be registered or resolved in a particular environment
>> (not every network supports mDNS, after all).  Does it go back to the
>> previous Mode 2 behavior, or skip private addresses entirely?  I think the
>> right idea is "go back to the previous Mode 2 behavior" personally, but
>> text on it one way or the other is required.
>>
>> regards,
>>
>> Ted
>>
>>
>>
>>
>>> _______________________________________________
>>> rtcweb mailing list
>>> rtcweb@ietf.org
>>> https://www.ietf.org/mailman/listinfo/rtcweb
>>>
>>>
>> _______________________________________________
>> rtcweb mailing list
>> rtcweb@ietf.org
>> https://www.ietf.org/mailman/listinfo/rtcweb
>>
>>

v2.23.0 | Report a Bug | By Email