Re: [therightkey] First public DNSChain server went online yesterday!

Tao Effect <contact@taoeffect.com> Sat, 08 February 2014 01:35 UTC

Return-Path: <contact@taoeffect.com>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C46A1A058A for <therightkey@ietfa.amsl.com>; Fri, 7 Feb 2014 17:35:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.334
X-Spam-Level:
X-Spam-Status: No, score=-1.334 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ExV2pB1Yvpd8 for <therightkey@ietfa.amsl.com>; Fri, 7 Feb 2014 17:35:08 -0800 (PST)
Received: from homiemail-a7.g.dreamhost.com (caiajhbdcbhh.dreamhost.com [208.97.132.177]) by ietfa.amsl.com (Postfix) with ESMTP id 3B4A31A01E6 for <therightkey@ietf.org>; Fri, 7 Feb 2014 17:35:08 -0800 (PST)
Received: from homiemail-a7.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a7.g.dreamhost.com (Postfix) with ESMTP id 9C96A25C06A; Fri, 7 Feb 2014 17:35:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=taoeffect.com; h= content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; s=taoeffect.com; bh=oFv3ALvlMX8oF7FtQ K9T623g2TU=; b=K39xYl/kT/TIf7vLbIwsFMFrkN+gnq8Keu0KRO1En/2W4QXtr tKBWfnjfMEFlezvDQbfKF5dYUWNf9VN4Sy/gbzZW1b5kRqf+R3nXCDYfxO2x+sHh a8CSaghj9l8CuG14sUZjjCdVqBL+4ZLgUk7yseTmFAoXCTkSCwCUuwQm5I=
Received: from [192.168.1.7] (173-31-103-210.client.mchsi.com [173.31.103.210]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: contact@taoeffect.com) by homiemail-a7.g.dreamhost.com (Postfix) with ESMTPSA id CED5325C06D; Fri, 7 Feb 2014 17:35:06 -0800 (PST)
Content-Type: multipart/signed; boundary="Apple-Mail=_8D0250B6-DB3B-4BBD-A608-10BFB4CA6A51"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
From: Tao Effect <contact@taoeffect.com>
In-Reply-To: <20140207193212.GQ22727@crankycanuck.ca>
Date: Fri, 07 Feb 2014 19:34:59 -0600
Message-Id: <32201143-1945-4705-A240-522F41535545@taoeffect.com>
References: <CAMm+Lwj1MS1yK4Luh5VvgSa9z24UwQ6iJUsS79nkkwgQ3-7gbA@mail.gmail.com> <06140551-4076-4402-ABA6-3EB78CFB9F0B@taoeffect.com> <F7057F5F-8291-4CE2-A8A4-B81ED3E011A1@taoeffect.com> <20140207193212.GQ22727@crankycanuck.ca>
To: Andrew Sullivan <ajs@anvilwalrusden.com>
X-Mailer: Apple Mail (2.1827)
Cc: therightkey@ietf.org
Subject: Re: [therightkey] First public DNSChain server went online yesterday!
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Feb 2014 01:35:10 -0000

Hi Andrew,

Thanks for the feedback!

> Given that you're basically telling people to use these names in a
> context where DNS names are expected to go, I would like to suggest
> that you want to do something than make up a string that you think
> won't collide in the DNS, for two reasons: (1) these queries will
> sometimes leak by accident onto the public DNS, where they're "junk",
> and (2) a new TLD applicant of the future could ask for .dns, and
> there's no obvious reason why ICANN would have to say no.  This will
> represent a security risk to your users.

This equally applies to GNUnet's DNS system (.gnu?), to Namecoin's .bit, and to Tor's .onion links.

The public DNS is broken and insecure.

ICANN is an old, centralized, and insecure thing, that I personally feel, at this point, is more deserving of the label "junk". ;-)

> I would like to suggest some other domain name.  You can register any
> available thing you like.  It need not actually resolve in the public
> DNS, as long as it is registered so that nobody else can get it.


How do I register the .dns TLD?

Does it involve paying money to ICANN? I'd rather not pay them anymore than I'm already begrudgingly paying them.

Is it even possible? I doubt it. :-p

"Hey guys, I'd like to put you out of business and make the whole domain registration thing decentralized, could you please give me .dns?"

XD

-g

--
Please do not email me anything that you are not comfortable also sharing with the NSA.