Re: [apps-discuss] Status of draft-ietf-appsawg-http-forwarded
Barry Leiba <barryleiba@computer.org> Fri, 07 September 2012 14:08 UTC
Return-Path: <barryleiba.mailing.lists@gmail.com>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 64FF421E805D for <apps-discuss@ietfa.amsl.com>; Fri, 7 Sep 2012 07:08:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.951
X-Spam-Level:
X-Spam-Status: No, score=-102.951 tagged_above=-999 required=5 tests=[AWL=0.026, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ihLhi5ZgYOqK for <apps-discuss@ietfa.amsl.com>; Fri, 7 Sep 2012 07:08:40 -0700 (PDT)
Received: from mail-lpp01m010-f44.google.com (mail-lpp01m010-f44.google.com [209.85.215.44]) by ietfa.amsl.com (Postfix) with ESMTP id 7DAB921E8051 for <apps-discuss@ietf.org>; Fri, 7 Sep 2012 07:08:40 -0700 (PDT)
Received: by lahm15 with SMTP id m15so2066178lah.31 for <apps-discuss@ietf.org>; Fri, 07 Sep 2012 07:08:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=lL/AiI6QRu6HAal3OGw2A48gQhOqjv378fx0/r1iLl8=; b=k6ALvC9wN6TiTRVd/5Q3mQU6KUKChBPMD0dzglX8cqtUOaU8EQVLvrlcPLBR0eQhwq cGO8FKff40wc9tYR9zqpcEsyXD/PwH+riDDbOJUI9Q2bdlVgAxpc8rQG6dYcWGZ7lQi4 fCTT0dHho07F6x28zcBpgt6DIa6NbXaPwKyJZDHKjVLXBKJHM6SwmQF7DxIjAxmO8AMI 4Edu29OI8+CvER8xy0KQerhWsoq9aU0y4tt2z6NHZmL8uOo7VnkulyGXOIoqbNzkNwZz nZIMIdCrpQAZUI4ARiqpZiGdx7bW+8FHNj5b6Zk22vlps3f6mPeLdssA7L5Zmb9m/OPE ihmA==
MIME-Version: 1.0
Received: by 10.112.31.197 with SMTP id c5mr2229979lbi.50.1347026919461; Fri, 07 Sep 2012 07:08:39 -0700 (PDT)
Sender: barryleiba.mailing.lists@gmail.com
Received: by 10.112.91.33 with HTTP; Fri, 7 Sep 2012 07:08:39 -0700 (PDT)
In-Reply-To: <20120907123936.54a9800f@hetzer>
References: <504068F3.6090601@cisco.com> <999913AB42CC9341B05A99BBF358718D01CA9E94@FIESEXC035.nsn-intra.net> <20120831075430.GA28281@1wt.eu> <97F2DB55-7311-4A05-B6B2-448D3151A24D@gmx.net> <20120904063106.GC9183@1wt.eu> <18BF8C7E-0CF5-4E1E-B837-7E6554BCAFFA@cdt.org> <20120904171636.GG11187@1wt.eu> <3A7C7149-E68C-4043-A38D-0680F5A5E6B3@cdt.org> <20120904181303.GJ11187@1wt.eu> <50464AAD.6060104@cs.tcd.ie> <50464CD1.7010200@cisco.com> <50464E79.6060409@cs.tcd.ie> <B2E7ED51-6B42-412F-A7E3-0DFDAF154275@isode.com> <69BBDEBD-4840-44DC-A49A-2EDFEE3CA6A0@cdt.org> <DF4513BC-AF9E-4076-ACF4-DA4DA6E12BD1@isode.com> <01OJWHSPET3Q0006TF@mauve.mrochek.com> <88B1FC3F-3847-44B1-AD36-15DB532BFF1E@tzi.org> <3F602497-A028-4AF2-BC70-E2A6C52E1670@cdt.org> <3E42CB5B6826E54EB4ED8380@JcK-HP8200.jck.com> <01OJXT4YWFDO0006TF@mauve.mrochek.com> <4E9E4E976759E6BD2F8B1D04@JcK-HP8200.jck.com> <01OJXXXIQNLI0006TF@mauve.mrochek.com> <20120907123936.54a9800f@hetzer>
Date: Fri, 07 Sep 2012 10:08:39 -0400
X-Google-Sender-Auth: IShvRGyS0tXGYAfIa310Xq5UZeI
Message-ID: <CAC4RtVBzykuRQ6Q-cfm=m5KhS_BdaXmR7vkOpa+3=WxE_9txEA@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: Andreas Petersson <andreas@sbin.se>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: Apps Discuss <apps-discuss@ietf.org>
Subject: Re: [apps-discuss] Status of draft-ietf-appsawg-http-forwarded
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Sep 2012 14:08:41 -0000
>> > would be ok except that it is not clear to me that we have a way >> > to provide solid privacy protection other than "if you are >> > worried about privacy, or need to consider this capability in a >> > privacy-sensitive environment, don't use this". That may be a >> > fine answer, but, if it is the acceptable one, we should get a >> > statement about it into the document and move on. ... > I think the text is pretty clear on that point. But, I have got the > perception from some people that this is not enough. > If you think the text do not clearly say "if you are worried about > privacy, or need to consider this capability in a privacy-sensitive > environment, don't use this", please suggest concrete changes to the > document. This is really the key point we're in right now, so let me be clear about it to everyone: 1. Andreas is working with Adrian Farrel to resolve his DISCUSS, which involves sufficient text in the introduction to explain what's being done and why. Adrian thinks the most recent version is going in the right direction, and he is preparing some proposed text to try to finish it up. 2. Andreas has an outstanding change that will go in at the same time as (1), which recommends that implementations have the use of "Forwarded:" turned off by default, requiring explicit configuration to enable it. This should resolve Stewart Bryant's DISCUSS. 3. If there are any further concerns about how much the text covers the privacy issues, we need to address those, and we will. But they must come with specific proposed text. It's certainly fair for some of that text to include something like "[...insert explanation here...]" if you don't feel you're the right person to craft that section of text, but you have to give Andreas something clear that he can work with so he knows specifically *what* you want added or changed *where*. Alyssa, can you make a specific suggestion for Andreas to take? Hannes, do you have anything to add here? John? Others? I'd like to get this wrapped up very soon into a version that we can at least agree addresses the privacy issues adequately, even though some would wish that we were not publishing this as a proposed standard. Barry, responsible AD
- [apps-discuss] Status of draft-ietf-appsawg-http-… Barry Leiba
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Eliot Lear
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Tschofenig, Hannes (NSN - FI/Espoo)
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Eliot Lear
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Adrian Farrel
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Barry Leiba
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… SM
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Julian Reschke
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Graham Klyne
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… SM
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alexey Melnikov
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Mark Nottingham
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Paul Hoffman
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Paul Hoffman
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Hannes Tschofenig
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Tony Finch
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Barry Leiba
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Adrian Farrel
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… SM
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Eliot Lear
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alissa Cooper
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alissa Cooper
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Eliot Lear
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Carsten Bormann
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Eliot Lear
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Carsten Bormann
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Mark Nottingham
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alexey Melnikov
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alissa Cooper
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alexey Melnikov
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Willy Tarreau
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Martin Thomson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Carsten Bormann
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Stephen Farrell
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ben Niven-Jenkins
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alexey Melnikov
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Carsten Bormann
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alissa Cooper
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Scott Kitterman
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Alissa Cooper
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… John C Klensin
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Andreas Petersson
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Barry Leiba
- Re: [apps-discuss] Status of draft-ietf-appsawg-h… Ned Freed