ietf
[Top] [All Lists]

Re: Appeal: Publication of draft-lyon-senderid-core-01 in conflict with referenced draft-schlitt-spf-classic-02

2005-12-13 12:13:19
In <439F0E4C(_dot_)1493(_at_)xyzzy(_dot_)claranet(_dot_)de> Frank Ellermann 
<nobody(_at_)xyzzy(_dot_)claranet(_dot_)de> writes:

Whatever you think, but your complaints about the theoretical
upper limit of DNS queries in an attack scenario resulted in
some of the most interesting post-MARID changes (Wayne's I-Ds).

This is bunk.

The DoS limits that are in draft-schlitt-spf-classic are almost
exactly the same as those found in the libspf2 implementation I
created.  The analysis of the packet sizes and the expansion factors,
and the writing of libspf2 happened well before MARID was even
started.  I know of one other SPF implemenation, and I think there was
another, that implemented roughly the same limits as I created in
libspf2.  The justification for adding those limits into the SPF spec
was, in large part, because they reflected existing practices.

Doug Otis did complain a lot about the DoS potential, and his
complaints did go unheeded by the draft authors and the working group
chairs.  However, his complaints could not have possibly had any
impact on the current limits in the SPF spec.


-wayne


_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf

<Prev in Thread] Current Thread [Next in Thread>