On Wed, Jul 15, 2015 at 5:52 PM, Hugo Maxwell Connery <h...@env.dtu.dk> wrote: > Or to re-quote Paul Vixie: > > what the internet should be doing is defining escape mechanisms for > non-internet systems, rather than saying "we are the only thing you can > use" > > RFC 6761 is that mechanism for DNS.
Nice summary. I have read this document, and sent comments on earlier drafts. I think the current version clearly expresses the requirements on DNS actors to make .onion labels safe to use in DNS-like slots (e.g., URLs). Especially given that there are a good number of sites already using URLs with .onion names, and the PKI requirement for the status of these names to be clarified, I strongly support the publication of this document. --Richard > > /Hugo > ________________________________________ > From: DNSOP [dnsop-boun...@ietf.org] on behalf of hellekin [helle...@gnu.org] > Sent: Wednesday, 15 July 2015 17:02 > To: dnsop@ietf.org > Subject: Re: [DNSOP] Last Call: <draft-ietf-dnsop-onion-tld-00.txt> (The > .onion Special-Use Domain Name) to Proposed Standard > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > On 07/14/2015 11:37 PM, David Conrad wrote: >> >> To put it bluntly, from a certain perspective, 6762 and >> dnsop-onion are essentially about the same thing: they are >> formalizing squatting on namespace (by Apple in the first >> instance and by TOR in the second). >> > > This is blunt in more than one aspect. That you consider squatting as a > negative is insulting for those people who actually need to rely on > squatting not to be excluded from society. > > But the argument that this is about, correct my paraphrase if I'm wrong, > "taking over by force part of the namespace" is in my opinion misguided. > > The Domain Name System is *one way* of managing *a* global namespace. > That it is the canonical way of naming things chosen for the Internet > does not exclude that it's only one only way. Special-Use Domain Names > exemplify this point, and particularly P2PNames such as .onion > demonstrate the viability of other techniques than the hierarchical tree > of DNS to manage global namespaces. > > The objective of this registration is convergent with the idea that the > DNS is the canonical global namespace of the Internet. Indeed .onion can > do without caring about the DNS, but this is not the point. The point is > to recognize the variety of techniques within the scope of DNS so that > future implementations can rely on the DNS as a correct source for > global information about namespaces. > > I regret not to have mentioned this before, and hope that it frames the > problematic beyond territorial claims, operational issues, and security > issues. > > == > hk > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2 > > iQJ8BAEBCgBmBQJVpnXeXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w > ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFQ0IyNkIyRTNDNzEyMTc2OUEzNEM4ODU0 > ODA2QzM2M0ZDMTg5ODNEAAoJEEgGw2P8GJg9r5QP/i6bE5b7u5M4JrIN+98GS8HS > SG0wcDwVX13SWZujJ92ZFGy7lHDfG9wQr8WO/AoAlWT0vMzyfixMpWJZ66gxxthA > F0fdZtI4N4nfjwolpQUnBnY/39yW1sumYg50AsS5dmX026F+wkjqidIV2s5PiZQr > D4GC+6XvvYMvsYmLKwv8JeK1+wqkRw9nl2YSX6Wt/U0EwaI/VpIgjYkaT0VIFjw+ > c5OBkRfdaY4pFZ/NMfjiIvcYQp7MQhFPjvpsRMFtvtwpn+ZiJKoB4e3dOPCeL1S2 > dANLyutiodFTMGYGWn9W6Zcfv9SckSOiblH5qvNpkMcAumQe09fTQGxNX14OQXWr > g6qV8oeNc2k1DsmPHM9UsDYSJmEy4zikGKLCcjpOC3Y4h+6aqyvBsby43dJfr7Fy > tajr8nh1IcA8VZtM/K5+rqMZabg0EPIPujkchdrJTZ8+jiT0uT8pEDR4VammAcOz > 9sMufzxdv30yYDYuFpTeTAf27z8h1232yhKOHaBaueDsZmva/IccHyHiw4ZQg/6Y > NEoZ87UJa1lXWqJ7+XeyOfwJp1adPwXWb2IiNDIjXndXwt94yBPinAL/3E/2gnfw > /XSKMTaeGBtixhllwidAtBSX7EeWTGQl7kWlH8MsvoLvpcZmuTTHpuWZ9k5VEcTe > rn6UM1/Ooyjp2i90Gz7q > =jn7Y > -----END PGP SIGNATURE----- > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
