Stephen Farrell wrote on 2019-03-22 15:36:
... in addition to transport security, things like logging etc. also affect folks' privacy. Not sure if you're aware of it, but there's an effort to craft BCP-like text on that broader topic in a draft [1] in the dprive WG. It'd be great to get your and other public recursive operators' take on that draft, as some of those issues have also been a cause of some of the much discussion here;-) [1] https://tools.ietf.org/html/draft-ietf-dprive-bcp-op-02
a quick look did not show any treatment of logging above-the-recursive (cache miss traffic) with anonymization, as being qualitatively (and perhaps legally) different from logging below-the-recursive. is there room for this kind of thinking to be expressed?
see also: https://www.farsightsecurity.com/assets/media/download/passive-dns-privacy.pdf -- P Vixie _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop