On Tue, 26.01.16 08:58, Petr Spacek (pspacek@xxxxxxxxxx) wrote: > I disagree with your disagreement. We have only 1 shared namespace for this > world, and like it or not, the root zone (and thus all single-label names in > it) is managed by ICANN. Well, did you actually read the earlier discussions in this thread? Again: it is well-known that single-label (aka "dotless domains") are supposed to be interpreted in a local context, using domain search paths, LLMNR and other local configuration. This is widely documented by various Internet bodies, for example here: https://www.iab.org/documents/correspondence-reports-documents/2013-2/iab-statement-dotless-domains-considered-harmful/ We only synthesize an address for the single-label name "gateway", not for the whole domain, or stuff below it. We do not synthesize anything for names with multiple dots, thus we are not in conflict with documented Internet specifications, we simply locally define one of those single-label names, fully in line with what the specs suggest. > Fritzbox already did the mistake and used "box." as fake TLD for their > "gateways", and this is going to cause trouble because Amazon bought > box. TLD [1]. Firstly, it's a very different case, because the fritzbox does not touch any single-label name! The zone they fake (and where the first address RRs are located) is actually "fritz.box", and not "box". In fact, they fake exactly nothing, not even a SOA RR for "box". (The fact that they did it this way actually buys them a get-out-of-jail-free-card for the DNSSEC situation: as long as they buy the fritz.box domain as soon as .box is delegated one day, they can simply leave it unsigned, and then their routers can continue to do what they want with it... But that's very much unrelated to the discussion around single-label names here.) (Also, as a matter of fact, not that it would matter much: you'll see that the Amazon application has been withdrawn, just scroll down on that page.) > "gateway." (as any other single-label name) can face the same faith one day, > when somebody decides to spend $$$ and buy it. Training anyone to rely on > "gateway" or any other single-label name is a bad idea. Nope. because IAB and ICANN and others made clear that single-label domains are supposed to be resolved in local context, and gateway hence is local. > agateway.local." is okay, because RFC 6762 reserved "local." for > this purpose. Nope! .local is the TLD for MulticastDNS, nothing else. AFAICS not a single claim in your mail is correct... Lennart -- Lennart Poettering, Red Hat -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx http://lists.fedoraproject.org/admin/lists/devel@xxxxxxxxxxxxxxxxxxxxxxx
