Re: [Acme] Éric Vyncke's No Objection on draft-ietf-acme-caa-06: (with COMMENT)
Hugo Landau <hlandau@devever.net> Mon, 20 May 2019 15:07 UTC
Return-Path: <hlandau@devever.net>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3F1A120172; Mon, 20 May 2019 08:07:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=devever.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kNVi1sI8hNIi; Mon, 20 May 2019 08:07:47 -0700 (PDT)
Received: from umbriel.devever.net (umbriel.devever.net [149.202.51.241]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 33B7212012C; Mon, 20 May 2019 08:07:46 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by umbriel.devever.net (Postfix) with ESMTP id 1CD7A1C055; Mon, 20 May 2019 17:07:43 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=devever.net; h= user-agent:in-reply-to:content-disposition:content-type :content-type:mime-version:references:message-id:subject:subject :from:from:date:date:received:received; s=mimas; t=1558364863; x=1576554224; bh=y4xXyo3qPKgQDEBMZdnTg1TYmnUDPrRb+e2wEjm+uhI=; b= MUCMqnXfH8qKhsFLFiS19XjAhbxnXzWNCNmID3VofkHgbPaoepAuv4WpHw1oG34Y cUwMIUc6NIX6Dg5HNvyfolEg6bdjuQkadGPlxfeGrSjrIK8SiyfhJ2Bn9Uc14D2n tEXotuxTOpfqzKhTY5g0rJx8usEp++KWmUbxS+bedhhDRf+hNDsFKnpUA5ZxJSvp s1wH1zoA4Vs/tQus9j8dyQWp03/Aq9bLzr++OyuAk/PeN4zdmuucGm3ZE89E8hii C8VEyIo7VMF2pcbaqQodoSi7tylgiP+JozJ2wv2qNY9QcUzsrB2H1EJBnzA7N/1v 5vr5duJ419cRErPFW+tHSQ==
Received: from umbriel.devever.net ([127.0.0.1]) by localhost (umbriel.devever.net [127.0.0.1]) (amavisd-new, port 10026) with LMTP id e34KvzSkFNO8; Mon, 20 May 2019 17:07:43 +0200 (CEST)
Received: from axminster (localhost [127.0.0.1]) by umbriel.devever.net (Postfix) with SMTP id BF60D1C04E; Mon, 20 May 2019 17:07:42 +0200 (CEST)
Date: Mon, 20 May 2019 16:07:42 +0100
From: Hugo Landau <hlandau@devever.net>
To: Éric Vyncke <evyncke@cisco.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-acme-caa@ietf.org, Daniel McCarney <cpu@letsencrypt.org>, acme-chairs@ietf.org, acme@ietf.org
Message-ID: <20190520150742.GA24816@axminster>
References: <155835787696.12964.5171712087418713494.idtracker@ietfa.amsl.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <155835787696.12964.5171712087418713494.idtracker@ietfa.amsl.com>
User-Agent: Mutt/1.11.3 (2019-02-01)
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/QfpStbz-OLxVMsxD5yQjOrv7YC8>
Subject: Re: [Acme] Éric Vyncke's No Objection on draft-ietf-acme-caa-06: (with COMMENT)
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 May 2019 15:07:51 -0000
> ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Hugo, thank you for the work put into this document. Adding some examples was a > good idea. > > I found it interesting that the security section represents roughly 50% of the > document ;-) > > I have two comments and one nit. See below. > > == COMMENTS == > > -- Section 2 -- > > Please use RFC 8174 boiler template for this section ;-) Done. > > -- Section 3 -- > > The word 'applicable' is used but never strictly defined. If defined in another > document, please add a reference (perhaps in the section 2), else please define > it. Hm. Reworking this turned out to be tricky. The CAA RFC doesn't really provide much in terms of terminology to hang off of, here, and I don't want to duplicate large amounts of the CAA RFC into this RFC just to express the same concept. After some thinking about it, it felt to me like all possible rewordings of this paragraph that came to mind were more likely to give people the wrong idea than clarify matters. I think this paragraph is superfluous anyway, so I've removed it. > > == NIT == > > -- abstract -- > > Expand CAA, CA in the abstract ? Done. I've also fixed a small bug I noticed, one of the examples hadn't been updated to reflect the switch from "non-acme" to a CA-specific prefix "ca-". You can view the changes here: <https://github.com/ietf-wg-acme/acme-caa/compare/draft-ietf-acme-caa-06...master> I'll roll up these changes into a new I-D barring any further comments in the next 24 hours.
- [Acme] Éric Vyncke's No Objection on draft-ietf-a… Éric Vyncke via Datatracker
- Re: [Acme] Éric Vyncke's No Objection on draft-ie… Hugo Landau
- Re: [Acme] Éric Vyncke's No Objection on draft-ie… Eric Vyncke (evyncke)