Re: [Acme] Current Charter language

stephen.farrell@cs.tcd.ie Fri, 15 May 2015 19:43 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DB3D1A875B for <acme@ietfa.amsl.com>; Fri, 15 May 2015 12:43:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WsrT0WrWLxis for <acme@ietfa.amsl.com>; Fri, 15 May 2015 12:43:30 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E70311A8757 for <acme@ietf.org>; Fri, 15 May 2015 12:43:29 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 34CCDBE75; Fri, 15 May 2015 20:43:28 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ldK-FUfZUh65; Fri, 15 May 2015 20:43:26 +0100 (IST)
Received: from [127.0.0.1] (unknown [86.46.19.109]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 94191BE64; Fri, 15 May 2015 20:43:26 +0100 (IST)
X-Priority: 3
To: mamille2@cisco.com
From: stephen.farrell@cs.tcd.ie
In-Reply-To: <55564974.7090803@cisco.com>
References: <CA+9kkMBvwLexviH97=dqj40-3-6i6+UMp7hFVzfCpY5_WJAaFQ@mail.gmail.com> <c3f7361df02b4ecfacf86c9ff655ea8f@ustx2ex-dag1mb2.msg.corp.akamai.com> <55563AB8.4050608@cs.tcd.ie> <CA+9kkMARqdWSqK1O-k5OmdmzUXQzx91in6P4Di237tTmzoEQKQ@mail.gmail.com> <55563ECE.2020708@cs.tcd.ie> <CAL02cgRMSZNe0JugjxYMvAFAS+wgKxO2dRQhohfshKk5E0b6hg@mail.gmail.com> <55564974.7090803@cisco.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: base64
Date: Fri, 15 May 2015 19:43:24 +0000
Message-ID: <2zwtby.noepge.2vaeqh-qmf@mercury.scss.tcd.ie>
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/acme/BnNRNIx9EPdJWHyAx7rxybTPIIQ>
Cc: rlb@ipv.sx, rsalz@akamai.com, ted.ietf@gmail.com, acme@ietf.org, kathleen.moriarty.ietf@gmail.com
Subject: Re: [Acme] Current Charter language
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 May 2015 19:43:32 -0000


On Fri May 15 20:31:00 2015 GMT+0100, ⌘ Matt Miller wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
> 
> On 5/15/15 1:20 PM, Richard Barnes wrote:
> > 
> > 
> > On Fri, May 15, 2015 at 2:45 PM, Stephen Farrell 
> > <stephen.farrell@cs.tcd.ie <mailto:stephen.farrell@cs.tcd.ie>>
> > wrote:
> > 
> > 
> > 
> > On 15/05/15 19:38, Ted Hardie wrote:
> >> On Fri, May 15, 2015 at 11:28 AM, Stephen Farrell 
> >> <stephen.farrell@cs.tcd.ie <mailto:stephen.farrell@cs.tcd.ie>>
> >> wrote:
> >> 
> >> 
> >> 
> >> On 15/05/15 19:09, Salz, Rich wrote:
> >>>> Any other obvious edits needed?
> >>> 
> >>> LGTM
> >> 
> >> (no hats)
> >> 
> >> Me too. I like it and figure it's good enough.
> >> 
> >> The only thing I'd suggest maybe adding is the illustrative goal 
> >> that an "apt-get install apache" should be able to get the 
> >> required certificates for a web server automatically, if there is
> >> an acme server that is willing to automate that far. And that a
> >> subsequent "apt-get upgrade" on that box should ensure that the
> >> certificate stuff needed for that apache install gets renewed if
> >> necessary.
> >> 
> >> I can see that it might be tricky to phrase that in language that
> >> works in a charter though, but maybe someone's feeling nicely 
> >> creative.
> >> 
> >> 
> >> ​ Well, at the moment we says this:
> >> 
> >> "All of the processing must be done in a manner that is
> >> compatible with common service deployment environments, such as
> >> hosting environments.​"
> >> 
> >> Perhaps we can add something just after like this:
> >> 
> >> "Simplicity in certificate installation and maintenance are key
> >> design goals.  Enabling this process to be incorporated into the
> >> standard installation and upgrades of web servers via a single
> >> command line invocation or flag would be especially desirable".
> >> 
> >> That's less catchy than "apt-get install acme-cert", but it may
> >> be more charter-y.
> >> 
> >> Is that worth doing?
> > I like it anyway. I'm fine if you'd prefer to go ahead without it
> > though,
> > 
> > 
> > I like the charter better without it, tbh.  I don't think there's
> > any ambiguity in what we're after in this dimension :)
> > 
> > 
> 
> I agree with Richard, FWIW.
> 
> And +1 on the rest of the existing charter.  SHIPIT.

Fair nuff I can live with(out) it
S

> 
> 
> - -- 
> - - m&m
> 
> Matt Miller < mamille2@cisco.com >
> Cisco Systems, Inc.
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
> Comment: GPGTools - https://gpgtools.org
> 
> iQEcBAEBCgAGBQJVVkl0AAoJEDWi+S0W7cO1mA4H/R85YcL8VDmICG6ebl/G1tSn
> NksrqJJBBxtsQtw6R2xXWDhJ4QGRPG+Eu3wypQd92uUSb++JwcyF+7B1/pk2gDOO
> jWbVjJLzgYsynegMGLYtAiWmOJKK/Ysz/t6UgrqQAtqh83ShqMFCT/dACKfjIAPR
> JbZN+AsgIyxCx3jzjjebaHszcy4yBQi91CK8dq/Ok8TKuBs/0D4j+faadcg7QO4o
> mtJePv+typLcyWFdE0jg2JxkWSVlVLcjsAWgtMnlTlWCvhaQSyXr9Qlwdp45LptE
> MvcYg9xtzOM1bIp1jg2kqeBoK2V2tvjQTSxfsVG46wGnb/Ow1xB5606Zb1jcTQs=
> =ryWD
> -----END PGP SIGNATURE-----
>