In message <alpine.osx.2.11.1505081636310.30...@ary.lan>, "John R Levine" write s: > > I'm not, but name leaking is different to name use. I suspect "mail" > > ends up being qualified whereas "home" and "corp" are actually used as > > private tlds. This difference requires different handling. > > From the viewpoint of the outside world, what would be different?
The type of response you send back has a impact. For a "mail" a secure NXDOMAIN response saying that "mail." doesn't exist should be fine. For "foo.home" you actually want a insecure response with a insecure referal or at least you want "DS home" to come back as a secure NODATA rather than a secure NXDOMAIN. This assumes we want to formalise the defacto use of .home for names in the home. "corp" would be similar to "home" technically. The arguments for formalising ".corp" would be different as most corporations already have namespace in the global DNS from which they can make their own private namespace delegation whereas most homes don't. Mark > Regards, > John Levine, jo...@taugh.com, Taughannock Networks, Trumansburg NY > Please consider the environment before reading this e-mail. > > PS: I'm not being deliberately obtuse, I'm being actually obtuse. > > -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
