Re: DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review

From: Stephane Bortzmeyer <bortzmeyer at nic.fr>
To: Alessandro Vesely <vesely at tana.it>
Cc: Anti-Spam Research Group - IRTF <asrg at irtf.org>, ietf at ietf.org
Date: Thu, 28 May 2009 15:15:09 +0200
In-reply-to: <4A1E8BD3.8000103 at tana.it>
References: <003d01c9dd01$bf3531d0$800c6f0a at china.huawei.com> <4A1A45BA.5030704 at swin.edu.au> <3be421270905250718y5d62f6d5odb6f2bebecf418d0 at mail.gmail.com> <6684E747-55CB-4BB3-B838-9F4FE906AFE7 at mail-abuse.org> <200905251603.MAA16221 at Sparkle.Rodents-Montreal.ORG> <CCE0A3E1-4BCB-460C-AEA0-6548BB4AE8FE at mail-abuse.org> <4A1D64C9.5060505 at tana.it> <47BC2197-472E-4615-97D2-F7E42B8F3B7D at mail-abuse.org> <4A1E8BD3.8000103 at tana.it>

On Thu, May 28, 2009 at 03:04:19PM +0200,
 Alessandro Vesely <vesely at tana.it> wrote 
 a message of 30 lines which said:

> I thought TCP was the default when the UDP message size is not
> enough.  

Well, in theory, it should be EDNS0 (standardized in the previous
century) but, in practice, it has deployment issues, like everything
which was invented after Jon Postel's death.

> It seems that DNS over SCTP would solve 90% of the problems with 10%
> of the efforts and resources required to implement DNSSEC. However,
> I hear more often about the latter than the former. How come?

I've read this message via the IETF general mailing list and so I
missed the beginning. In what way can you compare DNSSEC (which
provides object security) and SCTP or TCP (which provide a better
channel security for DNS)?

Follow-Ups:
- Re: DNS over SCTP
  - From: Alessandro Vesely

References:
- DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review
  - From: Alessandro Vesely

Prev by Date: DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review
Next by Date: Re: DNS over SCTP
Previous by thread: DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review
Next by thread: Re: DNS over SCTP
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: DNS over SCTP (was: Re: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.