IETF Logo Mail Archive

Re: [v6ops] Last Call: <draft-ietf-v6ops-v6-aaaa-whitelisting-implications-08.txt> (Considerations for Transitioning Content to IPv6) to Informational RFC

Lorenzo Colitti <lorenzo@google.com> Tue, 21 February 2012 07:54 UTC

Return-Path: <lorenzo@google.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F228921F85ED for <v6ops@ietfa.amsl.com>; Mon, 20 Feb 2012 23:54:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.549
X-Spam-Level:
X-Spam-Status: No, score=-102.549 tagged_above=-999 required=5 tests=[AWL=0.427, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zerWPblRPSys for <v6ops@ietfa.amsl.com>; Mon, 20 Feb 2012 23:54:53 -0800 (PST)
Received: from mail-tul01m020-f172.google.com (mail-tul01m020-f172.google.com [209.85.214.172]) by ietfa.amsl.com (Postfix) with ESMTP id EC17E21F85EA for <v6ops@ietf.org>; Mon, 20 Feb 2012 23:54:52 -0800 (PST)
Received: by obbwd15 with SMTP id wd15so9441180obb.31 for <v6ops@ietf.org>; Mon, 20 Feb 2012 23:54:52 -0800 (PST)
Received-SPF: pass (google.com: domain of lorenzo@google.com designates 10.182.86.201 as permitted sender) client-ip=10.182.86.201;
Authentication-Results: mr.google.com; spf=pass (google.com: domain of lorenzo@google.com designates 10.182.86.201 as permitted sender) smtp.mail=lorenzo@google.com; dkim=pass header.i=lorenzo@google.com
Received: from mr.google.com ([10.182.86.201]) by 10.182.86.201 with SMTP id r9mr11546674obz.8.1329810892384 (num_hops = 1); Mon, 20 Feb 2012 23:54:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type:x-system-of-record; bh=pl2aBo8/+kOfCbr1UrJnhJkPjNYk+qxWEsGdRGaKS/A=; b=b9EgbeeL/V05TyjsN5rgUavwOb8rCBYmQjt5NfYILukPcdJvt+D0seOoeRTm3NAqpb fyzI2u7cY8K2Aml23M91sXjZjDucuaSyJooNRHA1mrB7cmuM/RH9eO75VLX1/Gh1a3xK rxbaDu75Br86zS9NpWLfopIxMxEejtQ/cw9I4=
Received: by 10.182.86.201 with SMTP id r9mr9847667obz.8.1329810892319; Mon, 20 Feb 2012 23:54:52 -0800 (PST)
Received: by 10.182.86.201 with SMTP id r9mr9847659obz.8.1329810892215; Mon, 20 Feb 2012 23:54:52 -0800 (PST)
MIME-Version: 1.0
Received: by 10.182.5.67 with HTTP; Mon, 20 Feb 2012 23:54:32 -0800 (PST)
In-Reply-To: <CB61222C.50472%jason_livingood@cable.comcast.com>
References: <CB5F3DFE.4FFE3%jason_livingood@cable.comcast.com> <CB61222C.50472%jason_livingood@cable.comcast.com>
From: Lorenzo Colitti <lorenzo@google.com>
Date: Tue, 21 Feb 2012 16:54:32 +0900
Message-ID: <CAKD1Yr2n91=8n3n=Nh=zXFy8Rpzj_8D0C=sQQ2B8N0PGEgEQnQ@mail.gmail.com>
To: "Livingood, Jason" <Jason_Livingood@cable.comcast.com>
Content-Type: multipart/alternative; boundary="f46d0445183bd954b704b974b9de"
X-System-Of-Record: true
X-Gm-Message-State: ALoCoQmZwUrlMv13eoCUJxJj4ZYJp0uyObnP6An8avHsds4cnL3sNLGLiy0cVYvKpwhCLlZvOAGYihPlQZAMQ+kEEHbd135lzZFin+0CbvcuHYW5/BBUAXjy/LASFnkiMuBQzczUs+mc
Cc: v6ops v6ops WG <v6ops@ietf.org>, IETF Discussion <ietf@ietf.org>
Subject: Re: [v6ops] Last Call: <draft-ietf-v6ops-v6-aaaa-whitelisting-implications-08.txt> (Considerations for Transitioning Content to IPv6) to Informational RFC
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Feb 2012 07:54:54 -0000

On Thu, Feb 16, 2012 at 00:52, Livingood, Jason <
Jason_Livingood@cable.comcast.com> wrote:

>      To be more specific, at least section 5.5 ("it is unclear
> how implementers will judge when the network conditions will have
> changed sufficiently to justify turning off DNS Resolver Whitelisting
> and/or what the process and timing will be for discontinuing this
> practice") is now incorrect. It *is* clear, and it's what those
> implementers are doing as part of World IPv6 Launch.
>
>  Does that make more sense?
>
>
>  As the author, if it helps I plan to make the following change to
> Section 5.5 following the conclusion of IETF Last Call. I ran this by a few
> folks already and it seems broadly acceptable (have not heard from Lorenzo
> yet though).
>
>     Jason
>
>  *CURRENT 5.5: *
>  5.5.  Turning Off DNS Resolver Whitelisting
>
> Domains that choose to implement DNS Resolver Whitelisting generally
> consider it to be a temporary measure. It is unclear how implementers will
> judge when the network conditions will have changed sufficiently to justify
> turning off DNS Resolver Whitelisting and/or what the process and timing
> will be for discontinuing this practice, though the extent of IPv6
> deployment to end users in networks, the state of IPv6-related impairment,
> and the maturity of IPv6 operations are all clearly factors. However,
> implementers may wish to take into consideration that, as a practical
> matter, it will be impossible to get to a point where there are no longer
> any IPv6-related impairments; some reasonably small number of hosts will
> inevitably be left behind as end users elect not to upgrade them or as some
> hosts are incapable of being upgraded.
>  *PROPOSED 5.5 (NEW TEXT IN ALL CAPS):*
>  5.5.  Turning Off DNS Resolver Whitelisting
>
> Domains that choose to implement DNS Resolver Whitelisting generally
> consider it to be a temporary measure. It is unclear how implementers will
> judge when the network conditions will have changed sufficiently to justify
> turning off DNS Resolver Whitelisting and/or what the process and timing
> will be for discontinuing this practice, though the extent of IPv6
> deployment to end users in networks, the state of IPv6-related impairment,
> and the maturity of IPv6 operations are all clearly factors. However, *SOME
> IMPLEMENTERS HAVE ANNOUNCED THAT THEY PLAN TO PERMANENTLY TURN OFF
> WHITELISTING BEGINNING ON WORLD IPV6 DAY IN JUNE 2012 [REFERENCE]. IN ANY
> CASE*, implementers may wish to take into consideration that, as a
> practical matter, it will be impossible to get to a point where there are
> no longer any IPv6-related impairments; some reasonably small number of
> hosts will inevitably be left behind as end users elect not to upgrade them
> or as some hosts are incapable of being upgraded.
> <eom>
>

I think the suggested change does not go far enough. The
"high-service-level domains" that prompted this draft to be written, and
all the implementers I'm currently aware of, are decommissioning the
practice.

So the paragraph that states, "It is unclear how implementers will judge
when the network conditions will have changed sufficiently to justify
turning off DNS Resolver Whitelisting and/or what the process and timing
will be for discontinuing this practice" is still incorrect. Can you just
remove the paragraph and start the section with "Many implementers have
announced that they plan to permanently turn off whitelisting beginning
on..." ?

v2.23.0 | Report a Bug | By Email