IETF Logo Mail Archive

Re: [Acme] Content-Type and file extensions for HTTP01 challenges

Warren Kumari <warren@kumari.net> Wed, 18 November 2015 16:15 UTC

Return-Path: <warren@kumari.net>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 391D61B38C3 for <acme@ietfa.amsl.com>; Wed, 18 Nov 2015 08:15:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RAfEtByIJFTy for <acme@ietfa.amsl.com>; Wed, 18 Nov 2015 08:15:50 -0800 (PST)
Received: from mail-yk0-x231.google.com (mail-yk0-x231.google.com [IPv6:2607:f8b0:4002:c07::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AB4831B38C1 for <acme@ietf.org>; Wed, 18 Nov 2015 08:15:50 -0800 (PST)
Received: by ykdv3 with SMTP id v3so72143497ykd.0 for <acme@ietf.org>; Wed, 18 Nov 2015 08:15:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=Zo1PNsaCV9lc5QB1zbMNBB98kNkAK/rduGU/zRBrris=; b=hUPS016xPX+UuEF9BWdsbTsY/3dUmKc2AnVlepoGHR9Vq7zQd1mW86PblhU94zZDhE usM2nnoJVTBdFPj9c3iBvMJQnlMrLPeD3dP+ZXXbtBZGYkRNPZcjPSrmkSSEnY03q4YU u+6HWl28KIXsAg7gktQCgK7wP+qC6I8nrsQ7N59jqjk9SAxyrs2TPg+d4WQki3xwdasp /IwFW3aLvT9U8/i+/vhJfvnazrWLt24v5kGP7iEkIOCEJrMxXVRqjnXXA2g7dRtm37+d jCR/eJXQk/hDncV+CwuUirjXWQrWsHrHR4hgFPiCatSQYZ4PD1I3L29mnM7ZW9YrcoE7 N1pA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=Zo1PNsaCV9lc5QB1zbMNBB98kNkAK/rduGU/zRBrris=; b=Oy7pLGqyFMr0aSrrMHGLYxCEMF//9Y5p6nImRBOsEuckLk6CV7z0JfEG+oKdRXlP3p djB9b6vB7z1ecU3mT98ljIsBM/VFlpqFZXlqhGs7E5KcEKJKn5mZ1phNJ4zJ8eowr62y sh6eolxXoMe/SFM5gHDPCUR0jfnro2k0a5exWbcE0GsUAfrOY3DvT+81165pqz7/i8nG 3damMSgQQYyA8QTUtWtMxFif326tF6gcvrW22sRhLtoH7RbF0SnlT7DFUOPdATbFnjkw qbPaVWszYrn5AaJyRISUCr5WmVd/QsR7YAg+CiIC9lzg9Ryda7vgZDz+BoX+oOZR9PND FEqg==
X-Gm-Message-State: ALoCoQm67DUUmFOj4DK7kmqjWiyiNAhbgrOY6qcxIQ0lKHjfjZH8yQB6oDtERsquY3PfHqa2EFzQ
MIME-Version: 1.0
X-Received: by 10.13.202.75 with SMTP id m72mr2997986ywd.127.1447863349298; Wed, 18 Nov 2015 08:15:49 -0800 (PST)
Received: by 10.37.202.11 with HTTP; Wed, 18 Nov 2015 08:15:49 -0800 (PST)
In-Reply-To: <CABsBmKM9t3dX0_zq-EwsTOo7HpeMF6meiw9PhBaQLbHOCpGVGg@mail.gmail.com>
References: <20151113004436.GB18430@eff.org> <CABkgnnU5EzaPA4o7OgnTBpSQCZxjD+QsSV=4_L2rOBeFAoauKA@mail.gmail.com> <20151113011259.GC18430@eff.org> <1F85B447-6C45-4E5A-BB10-F1AD5CB2C3F3@vigilsec.com> <CABsBmKM9t3dX0_zq-EwsTOo7HpeMF6meiw9PhBaQLbHOCpGVGg@mail.gmail.com>
Date: Wed, 18 Nov 2015 18:15:49 +0200
Message-ID: <CAHw9_iJwqqhMb+7+aj6Sszfi6_K9=rREEK3dbpQ6yddrmHSKsg@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Bryan Livingston <bryanlivingston@gmail.com>
Content-Type: multipart/alternative; boundary="001a11482c2c9e8c1a0524d2f488"
Archived-At: <http://mailarchive.ietf.org/arch/msg/acme/csaT19XjLCnt3HAN_9hJxzTp4CU>
Cc: IETF ACME <acme@ietf.org>, Russ Housley <housley@vigilsec.com>
Subject: Re: [Acme] Content-Type and file extensions for HTTP01 challenges
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2015 16:15:52 -0000

On Wednesday, November 18, 2015, Bryan Livingston <bryanlivingston@gmail.com>
wrote:

> Here's yet another problem reported by a user that would be solved by
> switching to .txt answer locations.
>
> https://github.com/Lone-Coder/letsencrypt-win-simple/issues/7
>
> Typically web servers are already setup to host robots.txt so placing a
> .txt file on a server should be the least demanding config wise.
>

+1.

I initially had failures when trying to do manual, because my apache was
sending some weird content type. Apparently I'd configured this a long time
back, when installing some odd CMS package...

W


> On Fri, Nov 13, 2015 at 7:56 AM, Russ Housley <housley@vigilsec.com
> <javascript:_e(%7B%7D,'cvml','housley@vigilsec.com');>> wrote:
>
>>
>> > I should have added another option, 3b, drop the Content-Type
>> > restriction but allow file extensions.
>>
>> +1
>>
>> This seems like the best balance.
>>
>> Russ
>>
>> _______________________________________________
>> Acme mailing list
>> Acme@ietf.org <javascript:_e(%7B%7D,'cvml','Acme@ietf.org');>
>> https://www.ietf.org/mailman/listinfo/acme
>>
>
>

-- 
I don't think the execution is relevant when it was obviously a bad idea in
the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair of
pants.
   ---maf

v2.23.0 | Report a Bug | By Email