On Mon, 11 Jul 2016, Tim Wicinski wrote:
The draft is available here:
https://datatracker.ietf.org/doc/draft-song-dns-wireformat-http/
Please review this draft to see if you think it is suitable for adoption by
DNSOP, and comments to the list, clearly stating your view.
I am very hesitant to accept any protocol-over-http wrapper, as it just
moves the problem around and generate a new set of middleware boxes that
mess with the data.
I think RFC 7858 is fine for mistakenly broken networks. The only
advantage of this method is to work around administrative blocks. And
that's a rat-race with middle boxes.
There is also a bootstrap issue. if you can use the local DNS to get to
the webserver for DNS-over-HTTP then the local DNS can prevent you from
resolving it. If you hardcode the IP they can blacklist known servers.
And they can transparent proxy your requests to prevent you from using
it anyway. So it's not even that good to work around administrative
blocks.
So I am not convinced of the use case compared to RFC 7858.
Paul
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
