[dns-operations] Monday rant againt the uses of the Public Suffix List

Andrew Sullivan ajs at anvilwalrusden.com
Mon Jan 21 22:32:20 UTC 2013


On Mon, Jan 21, 2013 at 03:29:28PM -0500, Warren Kumari wrote:
> Please sir, if I run www.images.example.co.uk, can I set a cookie at images.example.co.uk? How about example.co.uk? Fine… Now .co.uk? Hmm…
> 
> There is no DNS query that will (or should) tell me that...

I strongly disagree, and have written a draft that would provide,
among other things, what I believe to be such a mechanism (though some
people on the W3C websec list seem to disagree, because they want
assurances that are not currently provided by the public suffix list).
The draft has heard some support from various reviewers, but I'm still
not sure where next to go with it, so I haven't been flogging it.
Review is welcome, however.

http://tools.ietf.org/html/draft-sullivan-domain-origin-assert-02

Best regards,

A

-- 
Andrew Sullivan
ajs at anvilwalrusden.com



More information about the dns-operations mailing list