On Thu, Jul 25, 2019 at 11:15:22AM -0400, Shumon Huque wrote:
> Can you elaborate on how you plan to do this?
>
> One of the things that has always annoyed me about RFC7706 (and its
> successor I-D) is that it offers no suggestions on how to validate that you
> got a correct copy of the entire roo
(I'll ignore the question of the cost/benefits of running a local root copy
for now and just focus on the technical topic below).
On Thu, Jul 25, 2019 at 1:45 AM Evan Hunt wrote:
>
> Third, and more pertinently, this work may have spin-off benefits. I've
> thought for a long time that a mechani
On 7/25/19 7:44 AM, Evan Hunt wrote:
> [... TLD XFR] However, admittedly, one probably
> wouldn't want to do it for large zones, and I don't know of any TLD's that
> allow transfer in the first place, so for the purposes of the current
> discussion, you're right enough.
I know about .se (and .nu)
On Thursday, 25 July 2019 05:44:50 UTC Evan Hunt wrote:
> ...
>
> But, it's Mostly Harmless. The implementation cost can be zero if you want
> it to be; it's just a server configuration. At worst, it's a waste of the
> time that's been spent talking about it (with the zone transfer code that
> f
On Tue, Jul 23, 2019 at 10:18:20PM +, Paul Vixie wrote:
> at the one-hour DNSOP meeting in montreal on monday evening, the authors
> of RFC 7706 described some of the use case questions they were hoping to
> answer in their -bis document, and one of them hit squarely on a topic i
> spoke about
Paul Vixie wrote:
>
> first, all complexity comes at a cost. the new code and configuration needed
> to support "mirror zones" will be a life long source of bugs and
> vulnerabilities, because that's true of every new feature. the desired benefit
> should be weighed against this cost. "by running
Small couple of comments in a top-reply...
I think the concept of having the root zone integrated into the RDNS is
something that Paul correctly indicates as something RDNS practices have
moved away from.
I happen to agree that doing so is a mistake, with particular reasoning:
- When integrated in
at the one-hour DNSOP meeting in montreal on monday evening, the authors of
RFC 7706 described some of the use case questions they were hoping to answer
in their -bis document, and one of them hit squarely on a topic i spoke about
frequently between 2005 and 2015. i've attached a copy of the 201
