Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

Brian Dickson wrote on 2022-08-17 16:56: On Aug 17, 2022, at 3:12 PM, Timothy Mcsweeney wrote: ... More importantly this proposal now sounds like an non-DNS un-restricted naming scope which puts it out the DNSOP charter right? It is the boundary between DNS and non-DNS, both

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

Sent from my iPhone > On Aug 17, 2022, at 3:12 PM, Timothy Mcsweeney wrote: > >  >>> On 08/17/2022 2:14 PM EDT Paul Hoffman wrote: >>> >>> The Intro says" the rightmost label, to signify that the name is NOT rooted >>> in the DNS, and that it should NOT be resolved using the DNS protocol.

Re: [DNSOP] [Ext] [internet-dra...@ietf.org] New Version Notification for draft-hardaker-dnsop-must-not-sha1-00.txt

Well anyone using RedHat Enterprise Linux 9 / Oracle Linux 9 already has RSASHA1 / NSEC3RSASHA1 disabled. BIND will automatically disable these algorithms as of the September releases if they are not supported by the crypto provider. So it will no longer require named.conf changes. -- Mark

Re: [DNSOP] [Ext] [internet-dra...@ietf.org] New Version Notification for draft-hardaker-dnsop-must-not-sha1-00.txt

On Tue, Aug 16, 2022 at 02:55:35PM +, Paul Hoffman wrote: > Another way to look at this is not from all signed delegations > anywhere, but for web sites that are most popular. Using the Tranco > list, choosing from the top 100,000 names, 6,389 are signed; of those, > 349 sign with algorithm 5

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

Ray Bellis wrote on 2022-08-17 08:01: On 17/08/2022 15:56, Timothy Mcsweeney wrote: ... I believe the intention was that the DNSSEC nsec records in the root zone would deny that .alt exists, helping to enforce separation from the "DNS protocol namespace" and anything under .alt. +1.

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

> On 08/17/2022 3:24 PM EDT Paul Hoffman wrote: > > > The last bullet in feels like > this draft is part of the DNSOP charter. That's why the WG adopted the draft > and it made it to WG Last Call. I read that as the second sentence of #6 is

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

> On Aug 17, 2022, at 12:11 PM, Timothy Mcsweeney wrote: > > >> On 08/17/2022 2:14 PM EDT Paul Hoffman wrote: >> >>> The Intro says" the rightmost label, to signify that the name is NOT rooted >>> in the DNS, and that it should NOT be resolved using the DNS protocol. >>> Isn't that a new

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

> On 08/17/2022 2:14 PM EDT Paul Hoffman wrote: > > > The Intro says" the rightmost label, to signify that the name is NOT rooted > > in the DNS, and that it should NOT be resolved using the DNS protocol. > > Isn't that a new root called Alt? > > It might or might not be, depending on what

Re: [DNSOP] I-D Action: draft-ietf-dnsop-dnssec-bootstrapping-02.txt

Dear DNSOP, Thank you for the review of -01! We have addressed the feedback and sorted out the remaining editorial issues. For a summary, see below. We are not aware of any outstanding questions or issues. The protocol is now in production at Cloudflare and SWITCH, amongst others. Given this

[DNSOP] I-D Action: draft-ietf-dnsop-dnssec-bootstrapping-02.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Domain Name System Operations WG of the IETF. Title : Automatic DNSSEC Bootstrapping using Authenticated Signals from the Zone's Operator Authors :

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

On Aug 17, 2022, at 7:56 AM, Timothy Mcsweeney wrote: > The Abstract says "a TLD label in non-DNS contexts". > Non-dns is outside the root right? Pedantic use of terminology is kinda important here. In this case, a name that ends in ".alt" is never part of the global DNS because .alt will not

Re: [DNSOP] WGLC for draft-ietf-dnsop-avoid-fragmentation

On 17. 08. 22 17:09, Daisuke HIGASHI wrote: Peter van Dijk >: Thank you for reviewing my implementation. Note that the function called "probe_pmtu" does not really probe. At best, it finds some data the kernel cached recently. At worst (i.e.

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

On 8/17/22 10:20, Paul Hoffman wrote: On Aug 17, 2022, at 6:19 AM, Timothy Mcsweeney wrote: Are you proposing dot Alt, or are you proposing dot Alt dot.? Please see , the draft in question. It has already gone through WG Last

[DNSOP] ALT root

Hey Ray! long time no talk to! Remeber this clip [1] from the movie Contact with the billionaire in the plane? [1] https://youtu.be/Et4sMJP9FmM?t=119 I think thats what's happening here. Personally I'm all for the ALT root. If you guys don't want to do it maybe I will. > On

Re: [DNSOP] WGLC for draft-ietf-dnsop-avoid-fragmentation

Peter van Dijk : > Thank you for reviewing my implementation. Note that the function called "probe_pmtu" does not really probe. At > best, it finds some data the kernel cached recently. At worst (i.e. > usually), it tells you the MTU of your local networking interface. That's correct. > > > -

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

On 17/08/2022 15:56, Timothy Mcsweeney wrote: But this part is super-genius "These ".alt" names are defined by protocol specification to be nonexistent" I had no idea you could specify non-existance. I'm going to have to try that! I believe the intention was that the DNSSEC nsec records

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

Paul, The Abstract says "a TLD label in non-DNS contexts". Non-dns is outside the root right? The Intro says" the rightmost label, to signify that the name is NOT rooted in the DNS, and that it should NOT be resolved using the DNS protocol. Isn't that a new root called Alt? Maybe it was the

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

On 17.08.22 16:20, Paul Hoffman wrote: The discussion with the Independent Submissions Editor appears to be about whether they are interested in using a TLD that would different TLD or pseudo-TLD in order to make their naming system more stable. The authors of draft-schanzen-gns have shown

Re: [DNSOP] [Ext] On ALT-TLD, GNS, and namespaces...

On Aug 17, 2022, at 6:19 AM, Timothy Mcsweeney wrote: > Are you proposing dot Alt, or are you proposing dot Alt dot.? Please see , the draft in question. It has already gone through WG Last Call, but has been held there for

Re: [DNSOP] Anything goes in ALT, was On ALT-TLD, GNS, and namespaces...

Hi Warren, Are you proposing dot Alt, or are you proposing dot Alt dot.? It would seem to me that a new naming system like the GNS that wants to be outside the DNS would want its own root too, like just Alt for example. You could always reel it back in later right? You know, interoperability

[DNSOP] On ALT-TLD, GNS, and namespaces...

Hi Warren, Are you proposing dot Alt, or are you proposing dot Alt dot.? It would seem to me that a new naming system like the GNS that wants to be outside the DNS would want its own root too, like just Alt for example. You could always reel it back in later right? You know,