Distributed configuration of "private" IDNA (Re: IDNA and getnameinfo() and getaddrinfo())

Andrew Sullivan ajs at shinkuro.com
Fri Jun 18 21:33:11 CEST 2010


On Fri, Jun 18, 2010 at 07:08:16PM +0000, Shawn Steele wrote:
> 
> How often is data actually validated?  Often href's aren't (at least not when intially entered).  Applications just assume a domain name will resolve, and, if it doesn't, it fails then.
> 

And of course, this blind acceptance of any data from any random place
in the Net including random evil humans has caused no trouble?  This
can't, surely, be the plan, even if it is in fact how things are done.
If you're going to insist on U-labels for interchange, you have _no
choice_ but to validate them as actually being U-labels, or they are
all but guaranteed to have crap in them that will never make it
through the IDNA2008 algorithms when it is finally time to do this.

I completely agree with you that it would be insane to require every
application to "do DNS".  But they can't handle domain name slots in
an "internationalized" way, and expect a standard interchange format
(with all its restrictions), but take whatever binary data they get
(or anyway, not reliably).

A

-- 
Andrew Sullivan
ajs at shinkuro.com
Shinkuro, Inc.


More information about the Idna-update mailing list