Re: [dns-operations] What's a suffix?

[David Conrad]

On Jan 21, 2013, at 1:00 AM, Stephane Bortzmeyer bortzme...@nic.fr wrote:

 On Mon, Jan 21, 2013 at 09:25:03AM +0100,
 Stephane Bortzmeyer bortzme...@nic.fr wrote 
 a message of 21 lines which said:
 
 A suffix is any string ending a domain name. 
 
 A reader even more nazi than I am suggested a definition closer to the
 DNS semantics:
 
 A suffix is any sequence of labels ending a domain name.


The term 'suffix' isn't really the issue -- it is the subset of 'suffixes' 
deemed 'public'.

Quoting RFC 6265:

  NOTE: A public suffix is a domain that is controlled by a
  public registry, such as com, co.uk, and pvt.k12.wy.us.
  This step is essential for preventing attacker.com from
  disrupting the integrity of example.com by setting a cookie
  with a Domain attribute of com.  Unfortunately, the set of
  public suffixes (also known as registry controlled domains)
  changes over time.  If feasible, user agents SHOULD use an
  up-to-date public suffix list, such as the one maintained by
  the Mozilla project at http://publicsuffix.org/.

I have to admit this definition has confused me for some time (e.g., what does 
public registry mean in this context?), but ignoring this, I find it odd that 
a registry as important to Internet operations as the public suffix list is 
not maintained by IANA. The fact that .CW was not automatically added to the 
list increases the oddness factor for me.

Regards,
-drc

___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-jobs mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

Re: [dns-operations] What's a suffix?

[Warren Kumari]

On Jan 21, 2013, at 6:45 AM, Jothan Frakes jot...@gmail.com wrote:

 Hi-
 
 Perhaps my suggestion was better for off-list, and I certainly don't know if 
 it would be the magic solution for .cw, but it certainly could not hurt them 
 to submit their entry to the PSL.  I do hope it contributes to the solution 
 for them.
 
 The PSL is something that the application development community uses to 
 enhance the IANA list for a variety of uses, typically for understanding what 
 might be valid on the rightmost side of addresses.  


Yup, the PSL is used by a number of browser manufacturers to scope cookies...

   Many app developers don't closely watch the IANA root list, and want to 
 know how to have a more elegant understanding and handling of the right hand 
 side of addresses that are parsed, going deeper than just the TLD itself.

Yes -- the IANA root list (unfortunately) simply doesn't contain the 
information needed to correctly determine where a cookie can be set. The PSL 
helps prevent a cookie being set at e.g: .co.uk.

W

 
 I don't have an opinion on if it is right or wrong, but it has been around 
 for some time, and a few years back I saw it was out of synch with the TLD 
 community and have put a lot of volunteer time into trying to correct that.  
 I am on temporary hiatus, but when not on exclusive projects, I volunteer 
 time and experience to the initiative as it needs tighter nexus with the DNS 
 community.  Many of you have perhaps seen me presenting it at ICANN meetings 
 within the CCNSO tech day or other forums to help elevate awareness in the 
 past few years.  
 
 The hope and purpose is to bridge the application development world so as to 
 increase better sophistication for developers about TLDs and reduce legacy 
 problems like simple TLD tests (ie 3 chars = invalid which broke forms or 
 other functionality for info, museum, aero, mobi, travel etc. as they 
 launched) .
 
 It is a central system managed by the community, kept up to date by 
 volunteers, and used by numerous software developers, programming languages, 
 browsers (cookies), search engines, security software, and many other places.
 
 Hopefully it helps .cw as they launch, which was my initial purpose in 
 response.
 
 Definitely worth folks on this list being aware of it.  Being able to 
 positively impact how your zone operates within the application development 
 community is a valuable resource.
 
 -J
 
 Jothan Frakes
 
 
 
 On Mon, Jan 21, 2013 at 1:00 AM, Stephane Bortzmeyer bortzme...@nic.fr 
 wrote:
 On Mon, Jan 21, 2013 at 09:25:03AM +0100,
  Stephane Bortzmeyer bortzme...@nic.fr wrote
  a message of 21 lines which said:
 
  A suffix is any string ending a domain name.
 
 A reader even more nazi than I am suggested a definition closer to the
 DNS semantics:
 
 A suffix is any sequence of labels ending a domain name.
 
 
 ___
 dns-operations mailing list
 dns-operations@lists.dns-oarc.net
 https://lists.dns-oarc.net/mailman/listinfo/dns-operations
 dns-jobs mailing list
 https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
 
 ___
 dns-operations mailing list
 dns-operations@lists.dns-oarc.net
 https://lists.dns-oarc.net/mailman/listinfo/dns-operations
 dns-jobs mailing list
 https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

--
The duke had a mind that ticked like a clock and, like a clock, it regularly 
went cuckoo.

-- (Terry Pratchett, Wyrd Sisters)


___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-jobs mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

[dns-operations] What's a suffix?

[Matthew Ghali]

Well, I went back to check, but none of the RFCs seem to explain what a 
suffix is, in the context of DNS. Clearly I haven't been keeping up with new 
developments in the technology. Where can I read about this new object? 

The last time I checked, people using terms like suffix in relation to DNS 
were usually MS AD administrators* who were clearly confused by simple concepts 
like domain names. Apparently times have changed, with this term now being used 
legitimately between subject matter experts on a mailing list for dns 
operators. I'm obviously behind again so please advise on how I can recognize a 
suffix in the wild, and distinguish it from a garden-variety old-fashioned 
domain name.

Thanks in advance for the help!
Matt Ghali

(* Or, surprisingly enough, technology executives at huge telcos who were 
running RFQs for multi-million-dollar ENUM projects.)


On Jan 20, 2013, at 6:34 PM, Jothan Frakes jot...@gmail.com wrote:

 I strongly suggest you submit .cw to the public suffix list at mozilla.
 
 http://publicsuffix.org/submit/
 
 Jothan Frakes

___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-jobs mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-jobs

Re: [dns-operations] What's a suffix?

[SM]

Hi Matthew,
At 20:32 20-01-2013, Matthew Ghali wrote:
matter experts on a mailing list for dns operators. I'm obviously 
behind again so please advise on how I can recognize a suffix in the 
wild, and distinguish it from a garden-variety old-fashioned domain name.


See RFC 6265.

Regards,
-sm 


___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-jobs mailing list
https://lists.dns-oarc.net/mailman/listinfo/dns-jobs