[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

careless protocol extensions

To: namedroppers@ops.ietf.org
Subject: careless protocol extensions
From: "D. J. Bernstein" <djb@cr.yp.to>
Date: 29 Nov 2002 18:39:00 -0000
Automatic-legal-notices: See http://cr.yp.to/mailcopyright.html.
References: <g3smxn8v8l.fsf@as.vix.com> <20021127174104.41801.qmail@cr.yp.to> <3DE52984.219E825A@daimlerchrysler.com> <20021128002526.68429.qmail@cr.yp.to> <200211280155.gAS1tTv13517@guava.araneus.fi>

[ post by non-subscriber.  with the massive amount of spam, it is easy to miss
  and therefore delete posts by non-subscribers.  your subscription address is
  54830374684695-namedroppers@sublist.cr.yp.to, please post from it or, if you
  wish to regularly post from an address that is not subscribed to this
  mailing list, send a message to namedroppers-owner@ops.ietf.org and ask to
  have the alternate address added to the list of addresses from which
  submissions are automatically accepted. ]

All of this was discussed in detail a long time ago. In any legitimate
standards organization, the results of that discussion would have been
recorded for future reference.

Andreas Gustafsson writes:
> Although it is not necessary for interoperability of the base
> protocol, it is necessary in order to support protocol extensions that
> send out-of-band data in sections other than the answer section, such
> as TSIG signed transfers.

No, it is not necessary. Backwards compatibility is not rocket science.
Servers must not---and, according to you, BIND does not---send TSIG junk
to clients that haven't indicated that they want it. (I have no desire
to support TSIG; IPSEC is a vastly better solution.)

If the TSIG specification fails to impose this basic interoperability
requirement, then that's a bug in the TSIG specification. It is the
responsibility of optional protocol extensions to maintain perfect
compatibility with the unextended protocol. The alternative---forcing
the entire Internet to change its software for every careless protocol
extension that comes along---is insane.

How would you like it if Microsoft wrote an RFC on some incompatible
protocol extension, hid the interoperability problems until the RFC was
published as an elective Proposed Standard, and then demanded that every
BIND installation be ``upgraded'' to deal with the junk produced by that
protocol extension? How do you think your users would like it?

---D. J. Bernstein, Associate Professor, Department of Mathematics,
Statistics, and Computer Science, University of Illinois at Chicago

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

Follow-Ups:
- Re: careless protocol extensions
  - From: Danny Mayer <mayer@gis.net>
- Re: careless protocol extensions
  - From: Mark.Andrews@isc.org

References:
- in support of axfr-clarify
  - From: Paul Vixie <vixie@vix.com>
- Re: in support of axfr-clarify
  - From: "D. J. Bernstein" <djb@cr.yp.to>
- Re: in support of axfr-clarify
  - From: Kevin Darcy <kcd@daimlerchrysler.com>
- Re: in support of axfr-clarify
  - From: "D. J. Bernstein" <djb@cr.yp.to>
- Re: in support of axfr-clarify
  - From: gson@nominum.com (Andreas Gustafsson)

Prev by Date: Re: axfr-clarify supporting unauthorized users
Next by Date: Re: axfr-clarify supporting unauthorized users
Previous by thread: Re: in support of axfr-clarify
Next by thread: Re: careless protocol extensions
Index(es):
- Date
- Thread