On 20 May 2015, at 13:12, Tim Wicinski wrote:
The draft can be found here:
https://datatracker.ietf.org/doc/draft-appelbaum-dnsop-onion-tld/
https://tools.ietf.org/html/draft-appelbaum-dnsop-onion-tld-01
Please review the draft and offer relevant comments.
I have read this document. I support it's adoption by the working group.
I am willing to review future revisions of the draft, and to contribute
text if that seems useful.
The document uses the phrase "top-level domain" all over the place to
describe .onion. That phrase to me seems indelibly linked to its meaning
in the context of the DNS; in the case of Tor, however, we're not
talking about the DNS at all, but rather the use of a completely
separate namespace that just happens to be syntactically equivalent to
DNS names.
The purpose of the document should not be to create a top-level domain
in the usual/DNS sense; rather it's to prevent such a top-level domain
(i.e. a delegation from the root zone for the owner name "onion") from
ever existing, since that would make things confusing for applications.
I support the idea that the running code evident in the tor network
should properly trump any process or policy that would otherwise make it
difficult to make the DNS-specific recommendations on resolvers and the
root zone encapsulated here. I just think the different contexts should
be more clearly delineated.
I would also support (as I have heard others say before, and as I think
I have also said) a separate document that provides advice to anybody
else planning to deploy code that uses a DNS-like namespace that is not
the DNS. Such people should either make their names unambiguously
different from those used in the DNS, or should anchor them somewhere
else in the namespace where defensive registrations in the DNS are less
contentious. For example, if the Tor project had used "onion.eff.org"
instead of "onion", we would not be having this conversation. Making
such guidance available would make it far easier to deal with the future
possibility that a decision with "onion" would set an unfortunate
precedent.
Note that I am definitively not criticising the Tor project for their
choices back at a time when there was no such guidance available. I
think they are all to be congratulated for causing us this headache,
since at its core that headache is a symptom of their success of
enhancing the privacy and freedom of everybody who uses their software.
Joe
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
