dnsop - Monday, July 20, 2015

dnsop

dnsop@jabber.ietf.org

Monday, July 20, 2015< ^ >

Jared Mauch has set the subject to: http://tools.ietf.org/wg/dnsop/agenda

Room Configuration

Room Occupants

GMT+0
[00:49:30] tjw.ietf joins the room
[00:49:37] tjw.ietf leaves the room
[01:42:12] marka leaves the room
[01:45:34] marka joins the room
[02:46:31] marka leaves the room
[02:54:14] marka joins the room
[03:46:26] marka leaves the room: Replaced by new connection
[03:46:28] marka joins the room
[04:39:27] marka leaves the room
[05:09:07] marka joins the room
[05:20:41] tjw.ietf joins the room
[06:48:11] marka leaves the room
[07:13:34] marka joins the room
[08:11:49] marka leaves the room
[08:12:30] marka joins the room
[08:25:48] marka leaves the room
[09:13:38] tjw.ietf leaves the room
[09:28:13] tjw.ietf joins the room
[09:31:04] marka joins the room
[09:43:28] tjw.ietf leaves the room
[09:48:18] marka leaves the room
[10:46:25] marka joins the room
[10:51:25] marka leaves the room
[10:52:56] tjw.ietf joins the room
[10:57:59] tjw.ietf joins the room
[10:57:59] tjw.ietf leaves the room
[10:58:23] tjw.ietf leaves the room
[11:00:14] marka joins the room
[11:00:36] marka leaves the room
[11:02:52] marka joins the room
[11:13:39] grothoff joins the room
[11:28:07] marka leaves the room
[11:28:11] marka joins the room
[11:30:02] marka leaves the room: Replaced by new connection
[11:30:04] marka joins the room
[11:34:15] marka leaves the room: Replaced by new connection
[11:34:16] marka joins the room
[11:35:05] marka leaves the room: Replaced by new connection
[11:35:07] marka joins the room
[11:40:13] marka leaves the room: Replaced by new connection
[11:40:15] marka joins the room
[11:50:40] grothoff leaves the room
[11:52:30] grothoff joins the room
[11:53:01] marka leaves the room
[12:06:38] marka joins the room
[12:09:02] grothoff leaves the room
[12:13:00] jaap joins the room
[12:14:05] jaap leaves the room
[12:23:38] grothoff joins the room
[12:42:52] grothoff leaves the room
[12:45:17] latourjacques joins the room
[12:45:39] latourjacques leaves the room
[12:52:29] marka leaves the room
[12:54:41] Carsten Strotmann joins the room
[13:03:52] grothoff joins the room
[13:05:08] DanYork joins the room
[13:08:26] DanYork leaves the room
[13:10:21] DanYork joins the room
[13:10:37] Dan York 2 joins the room
[13:10:39] Shoji Noguchi joins the room
[13:10:59] DanYork has set the subject to: DNSOP at IETF93 - http://tools.ietf.org/wg/dnsop/agenda
[13:15:49] habbie@gmail.com joins the room
[13:16:55] Kurt joins the room
[13:17:25] Wouter Wijngaards joins the room
[13:17:34] tjw.ietf joins the room
[13:18:59] Meetecho joins the room
[13:19:13] Fernando Vicens joins the room
[13:19:48] Ted Lemon joins the room
[13:20:24] Yuri Schaeffer joins the room
[13:20:38] John Levine joins the room
[13:21:05] Yuri Schaeffer leaves the room
[13:23:03] Shoji Noguchi leaves the room: Replaced by new connection
[13:23:04] Shoji Noguchi joins the room
[13:23:52] Andres Vidoz joins the room
[13:24:24] Y Schaeffer joins the room
[13:24:33] Y Schaeffer leaves the room
[13:25:00] Andres Vidoz leaves the room
[13:25:04] Y Schaeffer joins the room
[13:25:18] <DanYork> Good afternoon.
[13:25:24] r d joins the room
[13:25:25] <DanYork> I'll be jabber scribing if anyone needs relay
[13:25:36] John Levine_7567 joins the room
[13:25:44] r d leaves the room
[13:25:47] Y Schaeffer leaves the room
[13:25:48] Y Schaeffer joins the room
[13:25:49] <Ted Lemon> Hey, Dan!
[13:26:00] r d joins the room
[13:26:02] <Ted Lemon> Meetecho seems to be working well today.
[13:26:04] <DanYork> Hey Ted!
[13:26:13] <John Levine_7567> wow, this thing works
[13:26:14] paulwouters joins the room
[13:26:16] <DanYork> Greetings, neighbor! :-)
[13:26:26] Andres Vidoz joins the room
[13:26:35] r d leaves the room
[13:26:43] Yoshiro Yoneya joins the room
[13:26:52] Andres Vidoz leaves the room
[13:27:12] Russ Mundy joins the room
[13:27:29] Andres Vidoz joins the room
[13:27:51] rstory joins the room
[13:27:56] <Ted Lemon> Was he just talking about cookies?
[13:28:10] Y Schaeffer leaves the room
[13:28:12] <DanYork> He was... and I was getting hungry.  Cookie break is AFTER this one. ;-)
[13:28:19] <Ted Lemon> :)
[13:28:27] Yuri Schaeffer joins the room
[13:28:39] pawal joins the room
[13:28:44] jaap joins the room
[13:29:21] Yuri Schaeffer leaves the room
[13:29:41] yuri Schaeffer joins the room
[13:29:50] Carsten Strotmann_1955 joins the room
[13:30:17] yuri Schaeffer leaves the room
[13:30:32] Y S joins the room
[13:30:45] Jacques Latour joins the room
[13:31:37] naptee joins the room
[13:32:03] RussMundy joins the room
[13:32:15] marka joins the room
[13:32:22] Todd Tolbert joins the room
[13:32:33] paulwouters leaves the room
[13:32:39] paulwouters joins the room
[13:32:54] Jim Galvin joins the room
[13:32:58] ajsaf@jabber.org joins the room
[13:33:09] r d joins the room
[13:33:44] Suzanne (co-chair) joins the room
[13:34:18] <DanYork> Who is the second/backup jabber scribe?
[13:34:23] <Ted Lemon> So is there any indication in the room that I raised my hand?
[13:34:23] Olafur Gudmundsson joins the room
[13:34:26] <DanYork> Suzanne said someone would help
[13:34:30] Peter Koch joins the room
[13:34:37] latourjacques joins the room
[13:34:40] Frederico A C Neves joins the room
[13:34:41] Victor Kuarsingh joins the room
[13:35:04] <Suzanne (co-chair)> OUr scribes are Paul Hoffman and Dan York
[13:35:17] <DanYork> Ah, thanks.
[13:35:22] DanYork waves over at Paul
[13:35:26] <Ted Lemon> Yes?   No?   Nobody cares?
[13:35:36] <DanYork> Ted - no indication in the jabber chat
[13:35:50] Yuri Schaeffer joins the room
[13:35:53] <DanYork> This is Sara Dickinson presenting
[13:35:56] <Ted Lemon> There wouldn't be.   I'm on meetecho.   There's an option to raise your hand and speak.
[13:36:07] John Levine leaves the room
[13:36:13] John Levine_7567 leaves the room
[13:36:15] <Ted Lemon> The question is whether there's anything evidence of that UI on the other end of the connection. :)
[13:36:15] Y S leaves the room
[13:36:34] John Levine joins the room
[13:36:34] <tjw.ietf > there does not seem to be ted.
[13:36:39] <Suzanne (co-chair)> Ted, no there is not, sorry.
[13:36:40] <tjw.ietf > but then again - i'm not sure
[13:36:50] <tjw.ietf > i assume we need to run it
[13:36:55] <Ted Lemon> That's too bad.
[13:37:05] Todd Tolbert leaves the room
[13:37:06] <tjw.ietf > yes,
[13:37:09] <Ted Lemon> Jabber scribe comments suffer from the telephone game problem.
[13:37:17] <DanYork> yes
[13:37:31] <DanYork> Glad to relay, Ted, whenever you want
[13:37:41] <Ted Lemon> I tried to comment in 6man earlier and what I said got sufficiently garbled that the chairs didn't understand what I was asking.
[13:37:43] <Ted Lemon> Thanks, Dan.
[13:38:20] <DanYork> Please preface with "MIC:" and I'll relay.  I'm sitting next to a mic
[13:38:26] <Ted Lemon> k
[13:38:36] latourjacques leaves the room
[13:38:42] f n joins the room
[13:38:51] Victor Kuarsingh leaves the room: Disconnected: closed
[13:38:53] Victor Kuarsingh joins the room
[13:41:44] Russ Mundy leaves the room
[13:41:53] Guangqing Deng joins the room
[13:42:34] Russ Mundy joins the room
[13:42:56] Hosnieh Rafiee joins the room
[13:43:03] f n leaves the room
[13:43:04] Suzanne Woolf joins the room
[13:43:18] Suzanne Woolf leaves the room
[13:43:44] latourjacques joins the room
[13:44:27] wseltzer joins the room
[13:44:38] <DanYork> Bernie Voltz at mic
[13:44:44] latourjacques leaves the room
[13:45:47] Pieter Lexis joins the room
[13:45:54] tobia castaldi joins the room
[13:46:02] <John Levine> ??? the server can't see the keepalive request until it gets the query
[13:46:05] Hosnieh Rafiee_2768 joins the room
[13:46:37] <DanYork> Geoff Huston at mic
[13:46:53] Victor Kuarsingh leaves the room: Disconnected: closed
[13:46:55] tobia castaldi leaves the room
[13:46:56] <RussMundy> can't hear Geoff remotely
[13:46:57] Victor Kuarsingh joins the room
[13:47:05] <RussMundy> please speak up
[13:47:14] <DanYork> russ - Hmm
[13:47:29] <Russ Mundy> hummmmm
[13:47:45] Pieter Lexis leaves the room
[13:47:58] Pieter Lexis joins the room
[13:48:11] Hosnieh Rafiee_2768 leaves the room
[13:48:16] Pieter Lexis leaves the room
[13:48:19] Weiler joins the room
[13:48:20] <tjw.ietf > is that better?
[13:48:25] <DanYork> Just talked to audio guy
[13:48:26] <Weiler> is Geoff calling out football plays?
[13:48:28] <DanYork> is that better
[13:48:28] Pieter Lexis joins the room
[13:48:31] <DanYork> ?
[13:48:34] <DanYork> Ray Bellis at mic
[13:48:45] Pieter Lexis leaves the room
[13:48:50] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[13:48:50] Victor Kuarsingh joins the room
[13:48:51] <Hosnieh Rafiee> sorry I am late, can anyone say which draft is discussed.. I am not be able to use meetecho to see
[13:49:00] Pieter Lexis joins the room
[13:49:04] <tjw.ietf > 5966-bis
[13:49:06] <DanYork> draft-ietf-dnsop-5966bis
[13:49:26] <RussMundy> Geoff audio much better now
[13:49:30] <Hosnieh Rafiee> thanks Dan
[13:49:57] Peter van Dijk joins the room
[13:50:20] Peter van Dijk leaves the room
[13:50:45] Victor Kuarsingh leaves the room: Disconnected: closed
[13:50:47] Arjen Z joins the room
[13:50:50] Victor Kuarsingh joins the room
[13:51:03] <Russ Mundy> thanks for the audio fix - much better now
[13:51:55] <DanYork> Now on draft-ietf-dnsop-edns-tcp-keepalive
[13:52:52] user host joins the room
[13:52:53] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[13:52:53] Victor Kuarsingh joins the room
[13:53:39] <DanYork> Slides at https://www.ietf.org/proceedings/93/slides/slides-93-dnsop-1.pdf
[13:55:56] Joseph  Yee joins the room
[13:56:54] user host leaves the room
[13:57:05] <DanYork> Ray Bellis at mic
[13:57:09] Joseph  Yee leaves the room
[13:57:22] <Ted Lemon> MIC: do we have any data to suggest contexts in which long-lived connections may be practical?
[13:57:32] <DanYork> will relay
[13:57:34] Joseph Yee joins the room
[13:57:36] <Ted Lemon> thanks!
[13:58:17] <DanYork> Andrew Sullivan at mic
[13:58:43] <DanYork> (I'm next)
[13:59:18] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[13:59:18] Victor Kuarsingh joins the room
[13:59:23] <Ted Lemon> Hm, slight rephrase: do we have any data to suggest in which contexts long-lived connections may be practical?
[13:59:25] Hugo Kobayashi joins the room
[13:59:30] <DanYork> k
[14:00:00] <paulwouters> ted: i greatly want them in my unbound on laptop that has hotel port 53 and i do tcp or tls fallback :)
[14:00:11] ajsaf@jabber.org leaves the room
[14:00:19] <paulwouters> (and for query-chain it is very nice too :)
[14:00:21] <Ted Lemon> Yes, I can see why stub resolvers could benefit from this. :)
[14:00:37] naptee leaves the room
[14:00:38] <Ted Lemon> The question is whether caching resolvers can actually handle it, and if so, what that looks like.
[14:00:44] <paulwouters> i dont see as much use for auth servers. unless you want like to keep open tcp to a .com server
[14:00:50] <paulwouters> where you have a lot of usage.
[14:01:09] <paulwouters> ted: resolvers scale really well if needed?
[14:01:22] <habbie@gmail.com> google public dns is rumoured to do such things (keep open tcp to auths)
[14:01:38] ajsaf@jabber.org joins the room
[14:01:42] joel jaeggli joins the room
[14:01:46] Benno Overeinder joins the room
[14:02:38] <paulwouters> ted: also dns-over-tor
[14:02:58] <Ted Lemon> If a million clients have connections open, what happens?
[14:03:20] <ajsaf@jabber.org> Much hilarity?
[14:03:23] <DanYork> :-)
[14:03:28] <Ted Lemon> Exactly.
[14:03:39] <paulwouters> google makes more money?
[14:03:59] <ajsaf@jabber.org> But that's the same sort of problem that http servers have had forever
[14:04:22] <Ted Lemon> Different incentives.
[14:04:30] <Ted Lemon> That's why I asked if we had data.
[14:04:39] <Ted Lemon> We can speculate about it until we are blue in the face.
[14:04:59] <DanYork> That was Joe Abley before
[14:05:01] <Ted Lemon> HTTP connections typically provide more reward for the provider than DNS connections, per connection.
[14:05:07] <DanYork> This is John Dickinson at the mic
[14:05:23] <DanYork> David Lawrence at mic
[14:05:35] <Olafur Gudmundsson> Ted large fraction of queries comes from Resolver farms like Google, OpenDNS, ISP's and Auth servers would like to get those over multipleded TCP connections for multiple reasons, DDoS is the biggest one
[14:06:01] <Ted Lemon> Yeah, that makes sense, and is a better solution than cookies.
[14:06:10] <DanYork> Linus Nordberg at mic
[14:06:13] <Ted Lemon> I don't think there's a problem with that application.
[14:06:19] <Ted Lemon> Hence the question "in which cases...?"
[14:06:21] <ajsaf@jabber.org> I agree with Joe, BTW, that the current approach is easier to understand & see how it'd work
[14:06:29] <DanYork> Linus mentions "DNSSEC over Tor" as a use case
[14:06:50] <ajsaf@jabber.org> I was just trying to give the background as to what some of us thought the old approach (session length rather than timeout) was going to yield
[14:06:52] <paulwouters> although he really means dns over tor :)
[14:06:53] <DanYork> (Sara would like feedback and reviews)
[14:07:11] <paulwouters> you dont want a tor circuit for each tcp connection
[14:07:12] <Ted Lemon> How does DNSSEC over TOR make sense?
[14:07:25] <Ted Lemon> TOR obscures addresses.
[14:07:26] <paulwouters> it is expensive to setup a tor tcp connection
[14:07:29] <paulwouters> and tor doe snot do udp
[14:07:46] Sergey Myasoedov joins the room
[14:07:47] <DanYork> (Please send email to Paul if you are willing to review.)
[14:07:50] <paulwouters> so to get anonymous/encrypted dns using tor, you want 1 persistent TCP connection to a resolver
[14:07:50] <ajsaf@jabber.org> You can get a similar effect now under the draft by just observing whether a client actually times out when you told it to
[14:07:58] <DanYork> Now on draft-fujiwara-dnsop-nsec-aggressiveuse
[14:08:05] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[14:08:06] Victor Kuarsingh joins the room
[14:08:50] <DanYork> Kazunori Fujiwara presenting - https://tools.ietf.org/html/draft-fujiwara-dnsop-nsec-aggressiveuse-00
[14:09:04] <DanYork> https://www.ietf.org/proceedings/93/slides/slides-93-dnsop-3.pdf
[14:09:06] <Pieter Lexis> DanYork: -01
[14:09:22] <Pieter Lexis> https://tools.ietf.org/html/draft-fujiwara-dnsop-nsec-aggressiveuse-01
[14:09:48] Arjen Z leaves the room
[14:10:09] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[14:10:09] Victor Kuarsingh joins the room
[14:10:42] Francis Dupont joins the room
[14:10:53] <DanYork> Pieter Lexis: Thank you!  it's curious... https://tools.ietf.org/html/draft-fujiwara-dnsop-nsec-aggressiveuse-00 gives no idea there is a -01.
[14:11:15] <tjw.ietf > https://datatracker.ietf.org/doc/draft-fujiwara-dnsop-nsec-aggressiveuse/
[14:11:29] <tjw.ietf > that is the 01 draft
[14:11:36] <tjw.ietf > ahh. hnmm
[14:12:57] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[14:12:58] Victor Kuarsingh joins the room
[14:13:40] <DanYork> tjw.ietf : right ... I was just commenting that there seems to be a sync detail with the tools site.  https://tools.ietf.org/html/draft-fujiwara-dnsop-nsec-aggressiveuse-01 shows both -00 and -01.    But https://tools.ietf.org/html/draft-fujiwara-dnsop-nsec-aggressiveuse-00  only shows -00.  It *should* show the existence of a -01 draft as well.   It's a tools.ietf.org issue.
[14:14:28] Robert Chodorek joins the room
[14:14:36] <ajsaf@jabber.org> What is Warren's hat?
[14:14:44] <John Levine> mic: this would be very useful for rDNS and DNSBLs, particularly when crooks start hopping around in their /64 to try and avoid blacklists
[14:14:48] Robert Chodorek leaves the room
[14:14:52] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[14:14:53] Victor Kuarsingh joins the room
[14:14:58] <tjw.ietf > i think it is a funnel
[14:15:00] <John Levine> (... IPv6 rDNS and ...)
[14:15:11] Robert Chodorek joins the room
[14:15:17] <Ted Lemon> That's Ralf Weber... :)
[14:15:31] <tjw.ietf > thanks Ted! not even here and bringing it
[14:15:47] Benno Overeinder leaves the room
[14:15:52] <DanYork> John .. im in line
[14:16:11] Benno Overeinder joins the room
[14:16:19] <John Levine> ok tnx
[14:16:47] Victor Kuarsingh leaves the room: Disconnected: closed
[14:16:51] Victor Kuarsingh joins the room
[14:17:07] <DanYork> Rob Austein at mic
[14:17:26] Robert Chodorek leaves the room
[14:18:27] ajsaf@jabber.org leaves the room
[14:18:51] ajsaf@jabber.org joins the room
[14:19:30] <DanYork> Peter Koch at mic
[14:20:43] Victor Kuarsingh leaves the room: Disconnected: closed
[14:20:43] <DanYork> Paul Wouters at mic
[14:20:45] Victor Kuarsingh joins the room
[14:21:13] <DanYork> Olafur Gudmundsson at mic
[14:22:32] <DanYork> me channelling John
[14:22:35] <ajsaf@jabber.org> I have to say I am not convinced the draft is ready for WG adoption, because it isn't clear whether people really think it's a good thing (some do)
[14:22:40] <DanYork> Mark Andrews at mic
[14:22:50] Victor Kuarsingh leaves the room: Disconnected: Replaced by new connection
[14:22:50] Victor Kuarsingh joins the room
[14:22:57] <DanYork> ajsaf@jabber.org: are you asking for a relay or was that a side comment?
[14:23:12] <ajsaf@jabber.org> I'd therefore like to encourage the authors to keep working on it, and maybe to include some of the reasoning that Peter K just asked for
[14:23:25] <ajsaf@jabber.org> It's a side comment, because the mic lines are closed
[14:23:48] <Weiler> Andrew: concur.  More discussion seems in order.  Dan: sadly, the lines are closed, otherwise we might continue the discussion in the room…
[14:24:11] <DanYork> Weiler: true
[14:24:16] <ajsaf@jabber.org> I think the chairs suggested that it needs to continue, just that the agenda doesn't allow longer time
[14:24:32] <ajsaf@jabber.org> I also think that Mark is on crack about this CD=0 obsession he has.
[14:24:55] <ajsaf@jabber.org> Although I at last understand his argument.
[14:25:37] <John Levine> agree more work useful, have my doubts about AD
[14:26:09] dch joins the room
[14:26:10] <paulwouters> AD? or you mean CD? or AN ?
[14:26:14] habbie@gmail.com leaves the room
[14:26:58] <Ted Lemon> better not be talking about Joel!
[14:27:21] <John Levine> sorry, AN. If you want to use this hack, use DNSSEC
[14:27:24] <DanYork> This is Joe Abley speaking about KSK Key Roll
[14:27:35] <tjw.ietf > https://tools.ietf.org/id/draft-jabley-dnssec-trust-anchor-11.txt
https://tools.ietf.org/html/draft-jabley-dnsop-validator-bootstrap-00
[14:27:51] <tjw.ietf > I think those are what Joe is getting to
[14:27:59] Frederico A C Neves leaves the room
[14:28:29] <DanYork> Draft is https://tools.ietf.org/html/draft-jabley-dnssec-trust-anchor-11
[14:28:55] <DanYork> Slides: https://www.ietf.org/proceedings/93/slides/slides-93-dnsop-6.pdf
[14:29:09] Rob Austein joins the room
[14:30:05] habbie@gmail.com joins the room
[14:30:11] <Weiler> I'm surprised Joe isn't quoting David Wheeler.
[14:31:49] <Rob Austein> Unsurprisingly (because we have disagreed on this for at least fifteen years), I do not agree with Mark Andrews's comments at the end of the discussion of the agressive negative caching discussion.  I'm fine with the recursive nameserver doing validation regardless of status of CD bit, and I don't care about the CPU time it spends on that.  What I care about is having a mechanism which REQUIRES the recursive nameserver to return the RRsets that answer the question a validating stub asked, so that the stub can do that validation.
[14:31:58] <DanYork> Mike St. John at mic
[14:32:16] <tjw.ietf > Rob, thanks for those comments.
[14:32:30] habbie@gmail.com leaves the room
[14:32:46] <Weiler> Rob: can we do that without making it a "DDOS-bit" - where any DDOS'er just turns on the bit to bypass the protection?
[14:32:51] <DanYork> John Dickinson at mic
[14:32:57] habbie@gmail.com joins the room
[14:33:07] Frederico A C Neves joins the room
[14:33:15] <ajsaf@jabber.org> If a DDoSer is using CD=1, you stop answering them
[14:33:40] <ajsaf@jabber.org> just like you do in every other DDoS case
[14:34:54] <Rob Austein> Pretty much.  Alternative is only provide recursive service to known (transport level trust relationship, TSIG, …) entities, which is a more comprehensive version of not answering the DDOS.
[14:35:03] habbie@gmail.com leaves the room
[14:35:11] <DanYork> Wes Hardaker at mic
[14:35:16] habbie@gmail.com joins the room
[14:36:17] <DanYork> (I agree with Wes)
[14:37:19] <DanYork> George Michaelson at mic
[14:37:45] <DanYork> Mike St. Johns at mic
[14:38:04] <Weiler> Can we quote David Wheeler yet?
[14:38:15] <ajsaf@jabber.org> Any time you like!
[14:38:55] <Weiler> for our next trick: we'll put the OS update keys in the DNS.  go DANE!
[14:39:18] <DanYork> :-)
[14:39:26] <paulwouters> weiler: actually, selinux policy with dane :)
[14:39:29] <paulwouters> J/K
[14:40:17] <dch> excellent point, vast bulk of home & small business users are behind these devices. Pain misses the point completely.
[14:40:24] <DanYork> George M back at mic
[14:40:57] <DanYork> Ed Lewis at mic
[14:41:08] Benno Overeinder leaves the room
[14:42:37] <Ted Lemon> That is an awesome hat!
[14:43:02] <DanYork> Warren presenting... with the hat
[14:43:08] <Suzanne (co-chair)> That's a hat?
[14:43:34] <Pieter Lexis> looks like a Tajine
[14:43:47] <paulwouters> i thought a teletubby ?
[14:43:48] <Weiler> Maybe it's a handle.
[14:44:21] <habbie@gmail.com> https://www.ietf.org/proceedings/93/slides/slides-93-dnsop-4.pdf
[14:45:07] <Rob Austein> He was getting too many funny looks in the tinfoil baseball cap.
[14:45:08] <Frederico A C Neves> Definitely a teletubbie
[14:45:14] <DanYork> Warren needs to be wearing his "just stick it in DNS" t-shirt
[14:46:15] habbie@gmail.com joins the room
[14:46:16] habbie@gmail.com leaves the room
[14:47:37] Guangqing Deng leaves the room
[14:48:41] habbie@gmail.com leaves the room
[14:49:04] habbie@gmail.com joins the room
[14:49:27] <DanYork> Olafur G at mic
[14:49:32] <DanYork> (big mic lines forming)
[14:50:53] <DanYork> Roy Ahrens at mic
[14:50:57] Kurt leaves the room
[14:52:05] Juan P.  Cerezo joins the room
[14:52:32] Juan P.  Cerezo leaves the room
[14:52:56] <DanYork> Stephane Bortzmeyer at mic
[14:53:31] Francis Dupont leaves the room: Computer went to sleep
[14:53:39] marka leaves the room
[14:55:00] <DanYork> [side comment: Stephane mentions people don't upgrade due to security issues.  It depends if the security issue has a cute name that the media can seize upon... cute logos also help.]
[14:55:12] <DanYork> John Dickinson on mic
[14:55:29] <DanYork> Paul Hoffman at mic
[14:56:08] <DanYork> Christian Grothoff now presenting...
[14:56:16] <DanYork> A whole group of drafts
[14:56:17] <DanYork> draft-grothoff-iesg-special-use-p2p-i2p
        draft-grothoff-iesg-special-use-p2p-gns
        draft-grothoff-iesg-special-use-p2p-exit
        draft-grothoff-iesg-special-use-p2p-bit
[14:56:25] Rob Austein leaves the room
[14:56:37] marka joins the room
[14:57:18] Victor Kuarsingh leaves the room: Disconnected: closed
[14:57:18] Victor Kuarsingh joins the room
[14:57:54] Weiler leaves the room
[14:58:04] Victor Kuarsingh leaves the room
[14:59:10] <marka> One can always argue that lack of visibility into which trust anchors are in use is a CVE which needs to be fixed.
[15:02:02] <DanYork> George Michaelson at mic
[15:02:17] <DanYork> (and the people start rising to go to the mics... )
[15:02:27] ajsaf@jabber.org leaves the room
[15:03:03] habbie@gmail.com leaves the room
[15:03:04] habbie@gmail.com joins the room
[15:03:22] <DanYork> [At what point do we alert people that COOKIES are at the next break at 17:20 ... and if we run late we miss the cookies? ]  ;-)
[15:03:43] <DanYork> Andrew Sullivan at mic
[15:03:52] <Ted Lemon> I don't think cookies is on the agenda.
[15:04:53] <Ted Lemon> Gah, this is exactly, exactly wrong.
[15:05:17] <DanYork> Ted - want me to relay?
[15:05:25] <Ted Lemon> There's no point.
[15:05:31] <DanYork> BTW, Stuart Cheshire is next at mic
[15:06:00] <Ted Lemon> Andrew is IAB chair, and has consistently and repeatedly insisted on this view, accusing others who disagree of being bad actors, as he is doing now.
[15:06:45] <Ted Lemon> "Attack on somebody else's business model?"   That is so bogus.
[15:06:53] <Ted Lemon> That is exactly backwards.
[15:06:54] <DanYork> Stuart
[15:07:04] <Hosnieh Rafiee> cookie?
[15:07:04] ajsaf@jabber.org joins the room
[15:07:11] <Ted Lemon> No cookie for you.
[15:07:12] <Ted Lemon> :)
[15:07:16] <Hosnieh Rafiee> :(
[15:07:28] <DanYork> Okay... we're jumping to the next slides
[15:07:53] Benno Overeinder joins the room
[15:07:58] Juan P. Cerezo joins the room
[15:08:04] <Hosnieh Rafiee> I eat dnsop_cookies then :)
[15:08:16] <Ted Lemon> Excellent plan.
[15:08:38] <DanYork> Peter Koch speaking
[15:08:54] <DanYork> Slides - https://www.ietf.org/proceedings/93/slides/slides-93-dnsop-7.pdf
[15:10:03] Fernando Vicens leaves the room
[15:10:51] Francis Dupont joins the room
[15:11:23] <Suzanne (co-chair)> apologies to all for the time mismanagement, but we're committed to good work on this topic, and we slipped largely because of the excellent discussion of several important drafts earlier.
[15:11:25] habbie@gmail.com leaves the room
[15:11:30] habbie@gmail.com joins the room
[15:12:16] <Frederico A C Neves> Generating packets is quite cheap
[15:13:08] Yuri Schaeffer leaves the room
[15:13:11] habbie@gmail.com leaves the room
[15:13:28] habbie@gmail.com joins the room
[15:14:09] r d leaves the room
[15:15:05] <DanYork> Alain Durand now presenting...
[15:15:26] <ajsaf@jabber.org> I think Peter just conflated a distinction I tried to make some weeks ago
[15:15:38] each joins the room
[15:15:46] <ajsaf@jabber.org> the IAB's position (which is in RFC 2826) is about the root zone
[15:15:49] <ajsaf@jabber.org> which is clearly in the DNS
[15:16:11] <ajsaf@jabber.org> now, I am not convinced that the document assumes a difference between the DNS root zone and the root of the domain name space
[15:16:18] <ajsaf@jabber.org> but I think there's a distinction to make there
[15:16:29] dch leaves the room
[15:17:17] Sergey Myasoedov leaves the room
[15:18:05] dch joins the room
[15:18:40] dch leaves the room
[15:19:25] Sergey Myasoedov joins the room
[15:19:47] <Ted Lemon> Yes, the problem is that we have a thing called a domain name, which almost always is the name of a node in the DNS namespace, but coincidentally also has a function that is the same whether it references a node in the DNS namespace or not.
[15:19:57] Olafur Gudmundsson leaves the room
[15:20:11] <ajsaf@jabber.org> Exactly
[15:20:16] <Ted Lemon> Requiring that "competing" protocols use a different naming scheme is a real problem.
[15:21:04] <ajsaf@jabber.org> Well, right, which is why I don't object to (except aesthetically) the in-name switch when the name is valid only in some protocol contexts (e.g. mDNS or Tor)
[15:21:10] <Ted Lemon> And then there's also I guess the possible idea of a separate DNS namespace referenced by the same set of names, which would be the "competing" part of the discussion.
[15:21:21] <ajsaf@jabber.org> But I object quite a lot when then name is supposed to be valid in any protocol context
[15:21:40] <DanYork> George M at mic
[15:21:42] Jim Galvin leaves the room
[15:21:43] <Ted Lemon> That's certainly a hard problem.
[15:22:29] <Ted Lemon> We could consider what the design would look like if we had a .nis special-use domain: since nobody is actually advocating for that, but it would be potentially useful, it might be a good gedankenexperiment.
[15:22:44] tjw.ietf leaves the room
[15:22:45] <ajsaf@jabber.org> Might do, yeah
[15:22:46] jaap leaves the room
[15:22:58] Hugo Kobayashi leaves the room
[15:23:04] <DanYork> Stuart Cheshire at mic
[15:23:47] <DanYork> Remote folks... we'll be shutting down quickly here in a few minutes. (We're over time.)   I suspect we may see some of you in DBOUND next and then DANE after that.   (Welcome to Monday, it's "DNS DAY"!)
[15:24:15] <Ted Lemon> httpbis competing with dbound is a bummer... :}
[15:24:24] <Hosnieh Rafiee> DANE yes
[15:24:32] <Ted Lemon> +1, Stuart.
[15:24:56] <Hosnieh Rafiee> Thanks Dan.. so that means that we'll be kicked out soon
[15:24:57] Rob Austein joins the room
[15:24:59] <Ted Lemon> er, httpauth
[15:25:03] Pieter Lexis leaves the room
[15:25:36] marka leaves the room
[15:25:38] <DanYork> Joe Abley at mic
[15:25:42] paulwouters leaves the room
[15:26:04] <Suzanne (co-chair)> This discussion will continue on the list, so all will have their say. But we do have only a few more minutes
[15:26:06] <DanYork> Hosnieh Rafiee: Yes... there's another WG in 15 mins.  we need to clear out soon.
[15:26:26] habbie@gmail.com leaves the room
[15:26:27] habbie@gmail.com joins the room
[15:26:48] Rob Austein leaves the room
[15:26:57] ajsaf@jabber.org leaves the room
[15:27:07] <Hosnieh Rafiee> Thanks the jabber..
[15:27:11] pawal leaves the room
[15:27:12] <Hosnieh Rafiee> :)
[15:27:25] Frederico A C Neves leaves the room
[15:27:25] <DanYork> you're welcome
[15:27:32] Sergey Myasoedov leaves the room
[15:27:33] Hosnieh Rafiee leaves the room
[15:27:35] <Ted Lemon> yup, thanks, Dan!
[15:27:51] <DanYork> (the room is emptying as some people leave seeking caffeine and sugar)
[15:28:25] Meetecho leaves the room
[15:29:33] Francis Dupont leaves the room: Computer went to sleep
[15:29:44] habbie@gmail.com leaves the room
[15:29:59] Carsten Strotmann_1955 leaves the room
[15:30:00] Jacques Latour leaves the room
[15:30:04] Russ Mundy leaves the room
[15:30:08] Wouter Wijngaards leaves the room
[15:30:33] Ted Lemon leaves the room
[15:30:50] <DanYork> I've got to drop off
[15:31:06] each leaves the room
[15:31:11] John Levine leaves the room
[15:31:35] RussMundy leaves the room
[15:31:41] dch joins the room
[15:31:54] DanYork leaves the room
[15:31:54] Dan York 2 leaves the room
[15:31:57] Suzanne (co-chair) leaves the room
[15:32:12] dch leaves the room
[15:32:24] Peter Koch leaves the room
[15:33:01] Kurt joins the room
[15:33:21] joel jaeggli leaves the room
[15:33:30] John Levine joins the room
[15:33:45] Kurt leaves the room
[15:34:58] Andres Vidoz leaves the room
[15:36:05] Yoshiro Yoneya joins the room
[15:36:05] Benno Overeinder leaves the room
[15:36:27] Yoshiro Yoneya leaves the room
[15:36:57] joel jaeggli joins the room
[15:37:01] Yoshiro Yoneya leaves the room
[15:39:26] grothoff leaves the room
[15:39:53] grothoff joins the room
[15:41:17] rstory leaves the room
[15:41:42] Dan York 2 joins the room
[15:41:45] DanYork joins the room
[15:41:52] DanYork leaves the room
[15:42:46] Shoji Noguchi leaves the room: Replaced by new connection
[15:45:30] Carsten Strotmann leaves the room
[15:47:20] grothoff joins the room
[15:47:22] Joseph Yee leaves the room
[15:48:09] habbie@gmail.com joins the room
[15:49:35] wseltzer joins the room
[15:49:57] Juan P. Cerezo leaves the room
[15:50:27] wseltzer joins the room
[15:51:46] pawal joins the room
[15:52:46] joel jaeggli leaves the room
[15:52:51] joel jaeggli joins the room
[15:58:23] Suzanne (co-chair) joins the room
[16:00:15] Sergey Myasoedov joins the room
[16:01:11] grothoff leaves the room
[16:03:39] Sergey Myasoedov leaves the room
[16:05:27] Sergey Myasoedov joins the room
[16:06:28] wseltzer leaves the room
[16:07:22] Victor Kuarsingh joins the room
[16:07:28] wseltzer leaves the room
[16:16:21] jaap joins the room
[16:26:29] Sergey Myasoedov leaves the room
[16:27:46] habbie@gmail.com leaves the room
[16:32:46] Benno Overeinder joins the room
[16:32:51] Victor Kuarsingh leaves the room
[16:35:11] grothoff leaves the room
[16:40:02] pawal leaves the room: Disconnected: closed
[16:40:28] Suzanne (co-chair) leaves the room
[16:41:48] pawal joins the room
[16:42:18] Dan York 2 leaves the room
[16:42:33] jaap leaves the room
[16:42:57] Dan York 2 joins the room
[16:43:21] pawal leaves the room: Disconnected: closed
[16:44:09] joel jaeggli leaves the room
[16:44:28] pawal joins the room
[16:46:27] Olafur Gudmundsson joins the room
[16:48:58] joel jaeggli joins the room
[16:49:25] Benno Overeinder leaves the room: Disconnected: Broken pipe
[16:51:20] jaap joins the room
[16:51:26] Sergey Myasoedov joins the room
[16:51:44] jaap leaves the room
[16:51:59] marka joins the room
[16:52:39] Sergey Myasoedov leaves the room
[16:53:07] Benno Overeinder joins the room
[16:53:33] Peter Koch joins the room
[16:53:52] pawal leaves the room
[16:54:27] paulwouters joins the room
[16:56:15] Francis Dupont joins the room
[16:56:17] Francis Dupont leaves the room
[16:59:08] Suzanne (co-chair) joins the room
[17:00:55] Olafur Gudmundsson leaves the room
[17:04:38] Jim Galvin joins the room
[17:04:43] Benno Overeinder leaves the room
[17:05:05] paulwouters leaves the room
[17:05:53] wseltzer joins the room
[17:17:52] Peter Koch leaves the room
[17:18:00] Dan York 2 leaves the room
[17:19:28] wseltzer leaves the room
[17:24:00] joel jaeggli leaves the room
[17:26:54] joel jaeggli joins the room
[17:30:58] Suzanne (co-chair) leaves the room
[17:40:43] marka leaves the room
[17:54:11] Willem Toorop joins the room
[17:54:27] Willem Toorop leaves the room
[17:56:48] joel jaeggli leaves the room
[18:02:04] wseltzer joins the room
[18:12:58] wseltzer leaves the room
[18:32:20] MAP joins the room
[18:33:06] MAP leaves the room
[19:59:29] wseltzer leaves the room
[20:13:14] tjw.ietf joins the room
[21:02:14] marka joins the room
[21:13:37] joel jaeggli joins the room
[21:16:36] joel jaeggli leaves the room
[21:16:47] joel jaeggli joins the room
[21:19:19] joel jaeggli joins the room
[21:20:11] joel jaeggli leaves the room
[21:22:28] joel jaeggli leaves the room
[21:25:00] Jim Galvin leaves the room
[21:44:29] wseltzer joins the room
[23:14:09] Suzanne (co-chair) joins the room
[23:17:30] wseltzer leaves the room
[23:40:30] Suzanne (co-chair) leaves the room