On Tue, 04 Nov 2008 13:27:47 +0100, Stephane Bortzmeyer
<[EMAIL PROTECTED]> wrote:
On Tue, Nov 04, 2008 at 11:37:20AM -0000,
George Barwood <[EMAIL PROTECTED]> wrote
a message of 109 lines which said:
Can you not use the SOA record to make this determination?
First, let me repeat my opinion: there is no way to make a sure
determination of the *administrative* zone cuts in the DNS
tree. Browser authors should admit it and fix the cookie mechanism
instead of trying to figure out the administrative borders.
Please see
http://www.ietf.org/internet-drafts/draft-pettersen-cookie-v2-03.txt
But changing to such a new spec will take 10+ years, unless browser
vendors jointly decides to break the net (I don't see that happening).
Case in point: Opera is currently the only major client supporting RFC
2965, 9 years after it was made an RFC.
In the meantime alternative mechanisms are required. My drafts in this
area are the best suggestions I have for such workaround, but they may not
be the best.
However: Cookies is just the one area where this type of information is
being desired. IE8 is going to use this to highlight the effective domain
of a URL, making the rest of the URL almost invisible, as a counter to
hostname spoofing. FF3 is AFAIK already using this for similar purposes,
and is to my knowlegde using or planning to use it in lists of URLs,
bookmarks or history lists.
BTW, even assuming SOA works, I suspect one would have to track it all the
way to the TLD, unless it is impossible to leave it out at a subdomain.
--
Sincerely,
Yngve N. Pettersen
********************************************************************
Senior Developer Email: [EMAIL PROTECTED]
Opera Software ASA http://www.opera.com/
Phone: +47 24 16 42 60 Fax: +47 24 16 40 01
********************************************************************
_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop
