IETF Logo Mail Archive

Re: [Acme] AD Review: draft-ietf-acme-caa-05

Eric Rescorla <ekr@rtfm.com> Tue, 15 January 2019 21:39 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5633D130F13 for <acme@ietfa.amsl.com>; Tue, 15 Jan 2019 13:39:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.041
X-Spam-Level:
X-Spam-Status: No, score=-2.041 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R7c1Wv7SXuSe for <acme@ietfa.amsl.com>; Tue, 15 Jan 2019 13:39:46 -0800 (PST)
Received: from mail-lj1-x234.google.com (mail-lj1-x234.google.com [IPv6:2a00:1450:4864:20::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C641E1294FA for <acme@ietf.org>; Tue, 15 Jan 2019 13:39:45 -0800 (PST)
Received: by mail-lj1-x234.google.com with SMTP id n18-v6so3667350lji.7 for <acme@ietf.org>; Tue, 15 Jan 2019 13:39:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=xCmJAmVcY7/zKakbOWuFUIy+zgFcrPkqisj47moVRXI=; b=u4ewyvU5ZeHdM0ijziFWDWGHkSvXzQiUlImLmavB5xdVcrltK3ZV/RPPj82yMPF8n4 0EGmlAKbveX1RHZC/Xt0w4NoaHj9m3N58jmOZY6LkhY4SBWtiw99y/ES2L/re6XC4Fqv IIN6W5PFEw7WDztyzJpNn+xJheHWDQIO875MIXFMGud/kFP7gLfUjAuouWJWshOfgDOm sRG5vIGXFB9DHg5+1K+SCHPlFW/4rOgvRjqrdoDdHDnqfLTUKYW+GCGLaIuXS6M6n4Nw 18535wntUMCxgWN7FmAwK35tyec12AXPFZpPPbPZ/FmrxIqHQ0VVgn/qgN0OwDejGEQ4 3u0A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=xCmJAmVcY7/zKakbOWuFUIy+zgFcrPkqisj47moVRXI=; b=mgjKMLumOaeyb6jbncetqfvTXlnzrMWM5J84GCAFXCDxb+OJrZ/jr+ZO83Wm/RAZVY mFubnbuN2gOncFtsvShTik4ruOYS41GOr80d1PynCVLsq/oYi7KaF5fylI8n/0qDSgCM gHT/KeX/OVrqRkBcKu/OSE7t//N233MlnRp3m1IN8Csoxc04wYX+cR1QYa+1LtM/OuvH VBIkNYzQlOjQP6BQys5D9o9fD1eEd1mNSL3/V8qkU9g2etnP5oVuLd+AdDMs8U6M6tkm 5ZwEN0Vm2xKvB7ygm/ODK5uoimFaYIrZlTBBLxenabwdlAa+AA48kUtCpm48SpU7Xe8e qctQ==
X-Gm-Message-State: AJcUukdH0YIUQ6RV12sdLOpWReqlRgwzD8k2hi5MMWlnEFEUT0bEK3cb z3GUaXK6d3+nAWEdbN3yGSpZEWH14q5/M94GAGhNWUzJMhI=
X-Google-Smtp-Source: ALg8bN7m5/FF5WG22crPFuo5d4kU3j8Ss15ZyNh03O7q9h4gowTKKvaAhiWR/gtg8oCoJuzyaQLaJUGdNcAOvLDus38=
X-Received: by 2002:a2e:91d1:: with SMTP id u17-v6mr4195833ljg.160.1547588384010; Tue, 15 Jan 2019 13:39:44 -0800 (PST)
MIME-Version: 1.0
References: <CABcZeBMoHaDGEgQXmM2qdGi=i0mXxPsuKdiq3jtAKTojVOAG_A@mail.gmail.com> <20181204022641.GA29286@axminster> <CABcZeBOBSWysCEJXJ+rD6mG4=QgMyuo77giNm5NuWJKrxZMK1Q@mail.gmail.com> <20181222162816.GA23425@axminster> <CABcZeBOPs2AFMo8RYgoSP7zHOtNcoV0681e_r8yhTPdxgYhTCg@mail.gmail.com> <19FFB15F-3B01-49C7-A9BE-863BE159A40A@akamai.com> <20181229021131.GA25012@axminster> <45C0FFD1-D3EE-4B28-8062-520A9AC13456@akamai.com> <20181229033032.GA25199@axminster> <7F104233-0DAA-4D16-87B2-E4B191853A2F@akamai.com>
In-Reply-To: <7F104233-0DAA-4D16-87B2-E4B191853A2F@akamai.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Tue, 15 Jan 2019 13:39:04 -0800
Message-ID: <CABcZeBNCsGkGtozFX_3EV2o6F4wq5QY3HBtdaZrspH8L1iw9oA@mail.gmail.com>
To: "Salz, Rich" <rsalz@akamai.com>
Cc: Hugo Landau <hlandau@devever.net>, "acme@ietf.org" <acme@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e34f3e057f85ffb7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/ZfbAW0vCmOFpFsJlGXFwf1ozVSU>
Subject: Re: [Acme] AD Review: draft-ietf-acme-caa-05
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jan 2019 21:39:48 -0000

This works for me.

-Ekr


On Thu, Jan 3, 2019 at 11:33 AM Salz, Rich <rsalz@akamai.com> wrote:

> @ekr, is this okay with you?
>
> On 12/28/18, 10:30 PM, "Hugo Landau" <hlandau@devever.net> wrote:
>
>     On Sat, Dec 29, 2018 at 03:23:35AM +0000, Salz, Rich wrote:
>     >
>     >     +   Validation methods beginning with the prefix "ca-" are
> reserved for CA-local
>     >     +   meaning and may not be registered.
>     >
>     > "need not be" ?  Or "SHOULD NOT be" ?
>     My intention was that the rules of the registry state that such names
>     MUST NOT be registered. I didn't use a capitalised keyword here for
>     consistency with the prose already in that section.
>
>
>

v2.23.0 | Report a Bug | By Email