Re: [DNSOP] Working Group Last Call draft-ietf-dnsop-isp-ip6rdns

Tue, 10 May 2016 06:47:33 -0700 

Hello,

just cleaning up a backlog, I know I missed the last call date :)
Yes, we know of various (PowerDNS) deployments doing live and dynamic signing. There are 300k domain setups doing live signing. CloudFlare signs everything live. It is a solved problem. 

Regarding the draft, in section 2.5 it says

   Administrators should consider whether the lack of user-specified
   hostnames is a drawback.
This is not true - it would be trivial to allow the enduser to specify a few specific hostnames and deterministically auto generate the rest. Example code (in production for some networks, I understand) here: https://github.com/cmouse/pdns-v6-autorev
The last paragraph of 2.5 also makes no sense to me. Database synchronisation from a single master is a solved problem. 

Kind regards,
--
Peter van Dijk
PowerDNS.COM BV - https://www.powerdns.com/

On 29 Apr 2016, at 1:43, Alain Durand wrote:
Section 2.5. "Dynamically Generate PTR When Queried ('On the Fly')" was originally written years ago. Some recent announcement from DNS vendors generating and signing DNS records on the fly seem to be an existence proof that this would actually work and the scalability concerns, certainly valid a few years ago, may not be that critical now. 

Alain, speaking on my own behalf.




On Apr 25, 2016, at 4:51 PM, Tim Wicinski <tjw.i...@gmail.com> wrote:
This starts a Working Group Last Call for draft-ietf-dnsop-isp-ip6rdns 

Current versions of the draft is available here:

https://datatracker.ietf.org/doc/draft-ietf-dnsop-isp-ip6rdns/
Please review the draft and offer relevant comments. Also, if someone feels the document is *not* ready for publication, please speak out with your reasons.
There was a large amount of feedback on the draft prior to it being adopted, and we feel the author addressed all the outstanding issues. 
Please let us know if this is not the case.

This starts a two week Working Group Last Call process, and ends on
9 May 2016.

thanks
tim

_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop


_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop


_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to