Hi Petr
On Fri, Oct 06, 2017 at 03:56:20PM +0200, Petr Špaček wrote:
> Hello dnsop,
>
> draft-ietf-dnsop-dns-rpz expired on 2017-09-10, i.e. did not receive any
> update from 2017-03-09.
>
> Is there a real apetite for work on this document?
No answer for this question, but see below...
> We are considering RPZ implementation for Knot Resolver next year but if
> the document is not going to move forward I would rather close the
> ticket and be done with it. I certainly do commit to implementing
> ever-changing protocol without readily available description ...
I can't tell you whether to implement RPZ or not, but maybe the
following will be useful from an implementation perspective.
Whether IETF adopts it or not, RPZ is has been an existing real protocol
in operational use for several years now (with implementations and data
(zone) providers). The old RPZ specification was obsolete and this draft
is the only current spec that describes RPZ as it is used today. For
this reason at least, BIND will follow this spec whether it is a dnsop
adopted document or is maintained outside IETF. If for some reason the
co-authors abandon it (highly unlikely as they seem to have a business
case for it), we at ISC will likely pick it up as it is a BIND feature.
(We were going to do so about 1-1.5 years ago when we found that the old
draft was outdated, and contacted Vixie about it.)
It follows that if you want to support the RPZ zone syntax that is used
in feeds provided by several vendors, this draft is the only current and
correct spec as of now.
No comment about whether dnsop should adopt it or about the
philosophical side.
Mukund
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
