On Mon, Feb 29, 2016 at 10:04 AM Shane Kerr <sh...@time-travellers.org> wrote:
> Ed, > > At 2016-02-29 14:34:39 +0000 > Edward Lewis <edward.le...@icann.org> wrote: > > I don't think I was clear - this is only about the DNS protocol. This > > document proposes that the DNS protocol behave differently depending on > > the data being carried (QNAME) in it's own messages. > > [...] > > > This isn't about processing different values differently, this is about > > changing the behavior of the protocol based on environmental factors. > Ah. So you don't like identifying magic zones (other than in-addr.arpa, > ip6.arpa, .example, .local, ...). Fair enough. > > But AIUI, the proposal is an observation that Fujiwara's > NXDOMAIN-from-NSEC proposal can be implemented safely today for the root > zone, so we may as well go ahead and do that while considering wider > usage. > Yup. I believe we should still pursue Fujiwara's document, but that is likely to take a significant time, and there are hurdles to overcome. This document limits things to a subset where we know things work correctly (and seem OK within 4035) - once we have demonstrated that things work OK here, it paves the way for more aggressive NSEC. > > Nothing about it prevents Fujiwara's technique from moving on, and > eventually being more widely deployed. If changes are needed in the > root or resolver behavior later... well, they would have been needed > anyway, right? > > > Yup. We view this as complementing, not competing with aggressive-nsec. > I don't expect to change your mind but hopefully I understand your > position and can thus disagree with your actual stance. ;) > > Cheers, > -- > Shane > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop >
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
