Hi Paul,
That's a nice update. Some comments:
- For clarity, I'd prefer DUJ-S and DUJ-B64. (That denotes the variants as
belonging to the same concept, and it prevents confusing the 64 part with
DNS64.)
- As in the first version, I'm not sure why the format isn't
["DUJ-S", {"add": [zone-data...], "delete": [zone-data...]}]
with object elements optional. Can you shed some light on this?
- The use of the term "zone" in the document is confusing. For example,
The owner name of a zone in a zone-data string might be a zone that
does not yet exist because it is being created by an "add" action. A
common example of this is adding an "underscore name" [RFC8552] such
as "_smimecert" and "_xmpp".
It seems that in these example cases, typically the zone would exist, but the
owner name in it does not yet. The text somehow implies that _smimecert and
_xmpp would be their own zones. Why is that?
- The "zone-data" token I think should be named "record-data", as it can't
contain a full zonefile.
- "The owner-name MUST NOT contain a wildcard." Can we add justification? (I think this comes from
a concern about deletion operations in the face of wildcards, but I'm not sure that it should follow that
wildcard "add" operations should be forbidden. I also suspect that the prohibition is easily
overlooked during implementation of "add".)
Best,
Peter
On 2/7/25 04:21, Paul Hoffman wrote:
As I was thinking about two things that multiple people wanted (that I said I
didn't like), I realized they could go together easily. In this version, what
is shown to the user is in zone file format, which allows more natural quoting
and TTLs and so on. This also simplified what would go into a Base64 version,
which is now optional.
Let me know what you think. I can revert if people hate this, but am happy to
keep this if it is better liked. (The goal is still to get WG adoption at some
point in the future.)
--Paul Hoffman
Name: draft-hoffman-duj
Revision: 02
Title: DNS Update with JSON
Date: 2025-02-06
Group: Individual Submission
Pages: 9
URL: https://www.ietf.org/archive/id/draft-hoffman-duj-02.txt
Status: https://datatracker.ietf.org/doc/draft-hoffman-duj/
HTMLized: https://datatracker.ietf.org/doc/html/draft-hoffman-duj
Diff: https://author-tools.ietf.org/iddiff?url2=draft-hoffman-duj-02
_______________________________________________
DNSOP mailing list -- [email protected]
To unsubscribe send an email to [email protected]
--
https://desec.io/
_______________________________________________
DNSOP mailing list -- [email protected]
To unsubscribe send an email to [email protected]
