Dear Sara,
At 05:15 AM 23-01-2020, Sara Dickinson wrote:
> Section 3.2 discusses what a user does and use a DNS query
related to email as an example. Is the MUA expected to validated
the MX RR or is it the role of the MSA?
I think questions of validation are out of scope for this draft.
Apologies for not explaining this correctly. The draft is described
as a document about the use of DNS. Section 3.2 has the following:
"It gives information about what the user does ("What are the MX
records of example.net?" means he probably wants to send email to
someone at example.net ..." My question was about that DNS
query. Could you or the WG Chairs please explain why the question
which I asked is out of scope for this draft?
Looking back, this text was introduced into the original I-D before
RFC7624 was published and wasn't updated. Suggest:
OLD: The IAB privacy and security program also have a work in
progress [RFC7624] that considers such inference-based attacks in a
more general framework.
OLD: The IAB privacy and security program has also produced
[RFC7624] that considers such inference-based attacks in a more
general framework."
I gather that you meant "NEW" for the second part. I am okay with that text.
The text says "to our knowledge"; no DPRIVE or IETF review comment
to date (or errata to RFC7626) has contradicted this statement so I
think it is a fair representation of the community knowledge on this
matter. If you are aware of such a law please suggest text.
I asked whether there was a study. According to the above, it is
what the DPRIVE Working Group believes even though there wasn't any
study. I would like to thank you for the response as it addresses my question.
Regards,
S. Moonesamy
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
