Re: [DNSOP] [dns-privacy] draft-mayrhofer-edns0-padding

This can be dropped. EDNS aware clients are required to ignore unknown EDNS options. A server MUST use the 'Padding' option in a DNS response (QR=1) only when that response correlates to a query that contained the 'Padding' option. For QUERY I would be padding the request out to 400 o

Re: [DNSOP] [dns-privacy] draft-mayrhofer-edns0-padding

On Thu 2015-07-23 18:50:14 +0200, Alexander Mayrhofer wrote: > I had a discussion with Daniel Khan Gillmor today, and we talked about > his proposal to specify a padding option in TLS so that message-size > based correlation attacks on encrypted DNS packets could be > prevented. We continued discu

Re: [DNSOP] Fwd: New Version Notification for draft-wkumari-dnsop-multiple-responses-01.txt

On Thu, Jul 23, 2015 at 6:46 PM, Stephane Bortzmeyer wrote: > On Thu, Jul 23, 2015 at 12:50:37PM +0800, > 延志伟 wrote > a message of 113 lines which said: > >> #Z. W. Yan: we will revised it as: "an authoritative name server >> #operator can ensure that the recursive server that the client is >>

[DNSOP] Draft copy of the minutes

Hi I've upload the draft version of the minutes from the meeting on Monday. Big thanks to Paul Hoffman for putting these together. When you have a minute,take a look and let us know if there are any corrections. https://www.ietf.org/proceedings/93/minutes/minutes-93-dnsop thanks tim

Re: [DNSOP] draft-mayrhofer-edns0-padding

George, i certainly agree. Noted for a revision. Alex Von: George Michaelson [mailto:g...@algebras.org] Gesendet: Donnerstag, 23. Juli 2015 18:52 An: Alexander Mayrhofer Cc: dns-priv...@ietf.org; dnsop@ietf.org Betreff: Re: [DNSOP] draft-mayrhofer-edns0-padding What does it mean to exceed the p

Re: [DNSOP] Fwd: New Version Notification for draft-wkumari-dnsop-multiple-responses-01.txt

On Thu, Jul 23, 2015 at 12:50:37PM +0800, 延志伟 wrote a message of 113 lines which said: > #Z. W. Yan: we will revised it as: "an authoritative name server > #operator can ensure that the recursive server that the client is > #using has all the answers in its cache from the authoritative point >

Re: [DNSOP] draft-mayrhofer-edns0-padding

What does it mean to exceed the proffered EDNS0 buffer size with your padded response? You're 'silent' on length, but surely the server should respect the EDNS0 size proffer as a limit? On Thu, Jul 23, 2015 at 6:50 PM, Alexander Mayrhofer < alexander.mayrho...@nic.at> wrote: > Hi, > > I had a di

[DNSOP] draft-mayrhofer-edns0-padding

Hi, I had a discussion with Daniel Khan Gillmor today, and we talked about his proposal to specify a padding option in TLS so that message-size based correlation attacks on encrypted DNS packets could be prevented. We continued discussing other options (such as "artificial" RRs in the addition

Re: [DNSOP] the names that aren't DNS names problem, was Last Call:

[Back to dnsop where it belongs] On Wed, Jul 22, 2015 at 12:28:48PM +0200, George Michaelson wrote a message of 115 lines which said: > I merely noted that there are voices (myself included) who think a > revision might be most useful if it abnegated the right to make > these decisions and sa

Re: [DNSOP] Last Call: (The .onion Special-Use Domain Name) to Proposed Standard

--On Monday, July 20, 2015 13:50 -0400 Bob Harold wrote: > This thread has taught me more about the .onion names - thanks > for that. But I would have to agree with those that think this > bit of explanation is unnecessary to the RFC and should be > excluded, rather than attempting to clarify i