IETF Logo Mail Archive

Re: [Acme] [Errata Held for Document Update] RFC8555 (6843)

Deb Cooley <debcooley1@gmail.com> Sun, 14 January 2024 11:01 UTC

Return-Path: <debcooley1@gmail.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F0D1C14F61B for <acme@ietfa.amsl.com>; Sun, 14 Jan 2024 03:01:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.855
X-Spam-Level:
X-Spam-Status: No, score=-1.855 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ibHttjVMYgpb for <acme@ietfa.amsl.com>; Sun, 14 Jan 2024 03:01:22 -0800 (PST)
Received: from mail-il1-x12b.google.com (mail-il1-x12b.google.com [IPv6:2607:f8b0:4864:20::12b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D2DCAC14F617 for <acme@ietf.org>; Sun, 14 Jan 2024 03:01:22 -0800 (PST)
Received: by mail-il1-x12b.google.com with SMTP id e9e14a558f8ab-3606e211e5cso46517335ab.3 for <acme@ietf.org>; Sun, 14 Jan 2024 03:01:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1705230082; x=1705834882; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=bT8ipMzJ8LLyULpgsRbUpHPQZBnQAZvibFQFbj49OXY=; b=fwCDRpYB6ALDYUsI94bfP6OTsTD+DfJaqRmJoqnKnRemefT+2spNTUaWlwSt8Ub5f5 LBeWBqMfHGrn5jIHUQcnKi3Swus6mG/Zup7pOxvKfWMJO+jRNTRlypd4gMR3BVB6NSqs g4W1bkKfcMJTskD08xB/6j2aSR7TbQygio8aqo7DkZaz/1Jwp2BJj+3/e8fGBMLiMyFJ 69plyIFiDhsBe9E1pdez2IcAdDEv3ZPNASOELr1BQ9C7+Zbc7aNzpm9XSo3nZbaKdTfy b3aa3xQBMhia4/OovKQ22JpY8hGGuBgvuq4gphlNRArvkP16OJvAKTdpiH6JHgoMrpUQ 66lA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1705230082; x=1705834882; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=bT8ipMzJ8LLyULpgsRbUpHPQZBnQAZvibFQFbj49OXY=; b=wXgUazHxKsa02fx/XV0nlxPuC3KLwYbdQ8aS7o242uHD6/EUKSQHaXt0xsEUzZarE4 jcmwB3qG+LceIFXYGO414mmpprWhh2N35SnNce7M5ji3jtOGuCotTng+GkdnB7/SdXqP oz1kPXsb/pwjUMWcUiG2CqxutOFXsDryIz6wPFQ5815c7CgeHlDaxkCoxoNU4FV6JMtX +hKhDiZoCUayasarfEzF1Y7q/R7G9bybdZbGjxfdDvs8e9f+o7ac41lkqCCWBguTP+RV kYLPrAETtexklKIrksDaf76Yu8NOkBtOtLt/rdqz7rff2T7uyKI96OYRoutbFO9Y1TDl aFlg==
X-Gm-Message-State: AOJu0YyvGHjtCL3xc+K6JzuT4fWcxnr5pNWvvGvPaB0jpdMSY4Pev13E BDe+nsYIEBhsqdfGFUG6Xi3YIetURQEyNMpBPedYsp4=
X-Google-Smtp-Source: AGHT+IEsT1MDursCXad2xIkKGIxI8427HGgTh3Tm8FnE4RLB1n2PYM5cfCwmHcZIL4Y1ODrikfKnpjR2bw1chVzNvcs=
X-Received: by 2002:a92:6802:0:b0:35f:f5f8:3440 with SMTP id d2-20020a926802000000b0035ff5f83440mr3445361ilc.36.1705230082079; Sun, 14 Jan 2024 03:01:22 -0800 (PST)
MIME-Version: 1.0
References: <CAChr6SypX6PN_00OQUzRbtyXeQYsuVeZeRjg9Xosk8uRTkzr2Q@mail.gmail.com> <CAEmnErfE=-HMKkf4MHUfYCLam0baWA+QnAA7tg_tREtPFvRhdQ@mail.gmail.com> <CAChr6SzGo-4RZ0TwfqcJhy4FzL53LmsWHpe9EmN5eN_GDhdLzw@mail.gmail.com> <CAOG=JU+YFE826M7aW_KJRXNw639QjvVgH4WryPJ++Xq+BGS+Uw@mail.gmail.com> <CAChr6Syg80PWYDBDA872gyUkPoVKWvr2zsRmOUs16mGawQPa6g@mail.gmail.com>
In-Reply-To: <CAChr6Syg80PWYDBDA872gyUkPoVKWvr2zsRmOUs16mGawQPa6g@mail.gmail.com>
From: Deb Cooley <debcooley1@gmail.com>
Date: Sun, 14 Jan 2024 06:01:04 -0500
Message-ID: <CAGgd1Oc2=yXQvw+0sLZ+q5FKeg8N7_jxC-MdjaV9pjsmCNaEow@mail.gmail.com>
To: Rob Sayre <sayrer@gmail.com>
Cc: acme@ietf.org
Content-Type: multipart/alternative; boundary="0000000000004d824c060ee5d1a9"
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/yxzC7FDvpXybnWMpcPCP2MR9vMc>
Subject: Re: [Acme] [Errata Held for Document Update] RFC8555 (6843)
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Jan 2024 11:01:24 -0000

I had this marked as 'hold for update' (vs. 'verified').  I can't tell from
the discussion how you think we should be handling it.

I'm also not sure why .dev domains are being discussed.  How are .dev
domains obtaining test certificates (because one should not be issuing
operational certificates, right?).

Deb

On Thu, Jan 11, 2024 at 10:21 PM Rob Sayre <sayrer@gmail.com> wrote:

> On Thu, Jan 11, 2024 at 7:15 PM Amir Omidi <amir@aaomidi.com> wrote:
>
>> There is nothing blocking .dev domains responding over http. To be
>> specific, a TLD can not block a protocol like that.
>>
>
> Right, but one should not expect to get a redirect response. The server
> shouldn't answer (many of them do, which is a bug). I filed the bug on iOS
> for this one. They did fix it in short order. :)
>
> thanks,
> Rob
>
> _______________________________________________
> Acme mailing list
> Acme@ietf.org
> https://www.ietf.org/mailman/listinfo/acme
>

v2.23.0 | Report a Bug | By Email