To:
Mats Dufberg <dufberg@nic-se.se>, Ted Hardie <hardie@oakthorn.com>
Cc:
<Mark.Andrews@isc.org>, <dnsop@cafax.se>
From:
Daniel Senie <dts@senie.com>
Date:
Thu, 14 Feb 2002 11:29:48 -0500
In-Reply-To:
<Pine.BSF.4.30.0202140638580.8992-100000@spider.nic-se.se>
Sender:
owner-dnsop@cafax.se
Subject:
Re: SRV records - when?
At 12:49 AM 2/14/02, Mats Dufberg wrote: >On Feb 13, 2002, 20:52 (-0800) Ted Hardie <hardie@oakthorn.com> wrote: > > > This is the interesting thing: are you talking about a protocol/transport > > or a service? The service "web" might be handled by http or https and > > that indicated in the look up for the service (and given the possibility > > of using UPGRADE, maybe even that it can be http, https, or TLS within > > HTTP). The service "http", on the other hand, had better not be > > handled by https. > >I'm talking about http and https as different services, since you must >know in advance which one you are connecting to. For sites where some parts are encrypted, and other parts are not, there's a real need to keep the client/server mappings together. Consider, for example, a site which does not use encryption for the shopping cart, but does for the checkout. If the SRV records are used to select among servers in different physical locations, it would be quite inconvenient for an https SRV record to point at a different locale than the http record. ----------------------------------------------------------------- Daniel Senie dts@senie.com Amaranth Networks Inc. http://www.amaranth.com