Re: [therightkey] First public DNSChain server went online yesterday!

Tao Effect <contact@taoeffect.com> Sat, 08 February 2014 22:13 UTC

Return-Path: <contact@taoeffect.com>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB5DA1A0621 for <therightkey@ietfa.amsl.com>; Sat, 8 Feb 2014 14:13:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.334
X-Spam-Level:
X-Spam-Status: No, score=-1.334 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fI2e4qPZv9rb for <therightkey@ietfa.amsl.com>; Sat, 8 Feb 2014 14:13:29 -0800 (PST)
Received: from homiemail-a5.g.dreamhost.com (caiajhbdcagg.dreamhost.com [208.97.132.66]) by ietfa.amsl.com (Postfix) with ESMTP id 99A981A0420 for <therightkey@ietf.org>; Sat, 8 Feb 2014 14:13:29 -0800 (PST)
Received: from homiemail-a5.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a5.g.dreamhost.com (Postfix) with ESMTP id 1D8FB70406A; Sat, 8 Feb 2014 14:13:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=taoeffect.com; h= content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; s=taoeffect.com; bh=87p7oZOw280T3ZNVv XMwJYAnVRI=; b=moFauTUUNIApUooYGrVYyt/RcFlsB2qc2DDaPKoA0ZGKYUWPs Sls7CvviIPg2HMBPbZ2kxB4sKcfcNukPtjjDhh5OVsy2bgh7svXatHakIfZZxEOo btHwN97ZyyAC8aAktgznp2to2ZZNGEFEDi34Ls/PtYq+B/2sZi8RFdkjHg=
Received: from [192.168.1.7] (173-31-103-210.client.mchsi.com [173.31.103.210]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: contact@taoeffect.com) by homiemail-a5.g.dreamhost.com (Postfix) with ESMTPSA id 585A0704060; Sat, 8 Feb 2014 14:13:29 -0800 (PST)
Content-Type: multipart/signed; boundary="Apple-Mail=_FE69326E-226A-42C6-B2AE-555F458A3D17"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
From: Tao Effect <contact@taoeffect.com>
In-Reply-To: <23D8B61D-A198-40FB-9672-83AF23018AE9@vpnc.org>
Date: Sat, 08 Feb 2014 16:13:23 -0600
Message-Id: <28A83700-B9E8-4FA2-BC39-EAAF967871C8@taoeffect.com>
References: <CAMm+Lwj1MS1yK4Luh5VvgSa9z24UwQ6iJUsS79nkkwgQ3-7gbA@mail.gmail.com> <06140551-4076-4402-ABA6-3EB78CFB9F0B@taoeffect.com> <F7057F5F-8291-4CE2-A8A4-B81ED3E011A1@taoeffect.com> <20140207193212.GQ22727@crankycanuck.ca> <32201143-1945-4705-A240-522F41535545@taoeffect.com> <alpine.LFD.2.10.1402072050380.28278@bofh.nohats.ca> <B76BA5D8-87B4-4730-A960-776CF3434A4C@taoeffect.com> <23D8B61D-A198-40FB-9672-83AF23018AE9@vpnc.org>
To: Paul Hoffman <paul.hoffman@vpnc.org>
X-Mailer: Apple Mail (2.1827)
Cc: therightkey@ietf.org
Subject: Re: [therightkey] First public DNSChain server went online yesterday!
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Feb 2014 22:13:32 -0000

Paul,

Your understanding is incorrect.

> If the idea is that I can get a certificate with paulehoffman.dns 

That is not the idea. Docs are on GitHub, and I know you're smart enough to comprehend them.

> If this TLD gets allocated to someone else, or gets blocked by middleboxes

It cannot get allocated by anyone else. It is designed specifically for DNSChain servers, and they will not look that up in the old DNS networks.

You can definitely fork the 120k and own it on the old network. It doesn't matter.

Documentation, that has gone through considerable improvements in the last 24 hours, is still available at the same URL:

https://github.com/okTurtles/dnschain

Cheers,
Greg

--
Please do not email me anything that you are not comfortable also sharing with the NSA.

On Feb 8, 2014, at 4:00 PM, Paul Hoffman <paul.hoffman@vpnc.org> wrote:

> On Feb 7, 2014, at 7:48 PM, Tao Effect <contact@taoeffect.com> wrote:
> 
>> It's a meta-TLD, not a TLD.
> 
> Say what? If the idea is that I can get a certificate with paulehoffman.dns put in the field reserved for domain names, and have that accepted by TLS servers, it is a TLD. No "meta".
> 
> If this TLD gets allocated to someone else, or gets blocked by middleboxes, you have no one to blame but yourself. It would be *trivial* to avoid this problem by buying an SLD and pre-paying for 20 years of registration.
> 
> --Paul Hoffman
> _______________________________________________
> therightkey mailing list
> therightkey@ietf.org
> https://www.ietf.org/mailman/listinfo/therightkey