Re: [apps-discuss] [IANA #900093] Re: draft-vesely-authmethod-dnswl

Alessandro Vesely <vesely@tana.it> Wed, 13 April 2016 18:01 UTC

Return-Path: <vesely@tana.it>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E09B12DCED for <apps-discuss@ietfa.amsl.com>; Wed, 13 Apr 2016 11:01:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.298
X-Spam-Level:
X-Spam-Status: No, score=-5.298 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.996, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tana.it
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xsx4TTbbqBq7 for <apps-discuss@ietfa.amsl.com>; Wed, 13 Apr 2016 11:01:45 -0700 (PDT)
Received: from wmail.tana.it (wmail.tana.it [62.94.243.226]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 26ACD12DC46 for <apps-discuss@ietf.org>; Wed, 13 Apr 2016 11:01:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tana.it; s=beta; t=1460570501; bh=B4c4WpepQsa/Fqfd39NjI7QuwM77/rtDoRD9s1FVKWo=; l=3593; h=To:References:Cc:From:Date:In-Reply-To; b=Vn5//qdkVK+wgIgLaotTdnPYH0lKmS6j96QwKsNEZzs5A/YU2FA2jGgZMogsgEozt F+NAScJETAzmCCkB0kXjMYM1VqlNl0QLP9G1pT+V9OW3papEK5D5cLAXz6yLcud8IC M5jZJx5q0pVvihZAgU7pgCK7mRBq8m2DAcalgvh4=
Authentication-Results: tana.it; auth=pass (details omitted)
Received: from [172.25.197.88] (pcale.tana [172.25.197.88]) (AUTH: CRAM-MD5 uXDGrn@SYT0/k) by wmail.tana.it with ESMTPA; Wed, 13 Apr 2016 20:01:41 +0200 id 00000000005DC044.00000000570E8985.000046FC
To: "Murray S. Kucherawy" <superuser@gmail.com>
References: <CAL0qLwaGuz-CBMke3BhjfLwn7Bt213XobrOUe3_hAqxMZw+PKg@mail.gmail.com> <57025643.7040101@tana.it> <CAL0qLwb_8RN0w03N9P5xQsoC2aJppYTaBidmX_uuvioCJ6CaQg@mail.gmail.com> <5702946B.30307@tana.it> <CAL0qLwZAuVpWj-oDN6cyKiHmnJgpGdtyHKwMfz98v5odBOHTvw@mail.gmail.com>
From: Alessandro Vesely <vesely@tana.it>
Message-ID: <570E8985.7080708@tana.it>
Date: Wed, 13 Apr 2016 20:01:41 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Icedove/38.7.0
MIME-Version: 1.0
In-Reply-To: <CAL0qLwZAuVpWj-oDN6cyKiHmnJgpGdtyHKwMfz98v5odBOHTvw@mail.gmail.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/apps-discuss/U-4kuMImkJzoob8wpV4qzVDfLd8>
Cc: Matthias Leisi <matthias@leisi.net>, AppsAWG <apps-discuss@ietf.org>, iana-prot-param-comment@iana.org
Subject: Re: [apps-discuss] [IANA #900093] Re: draft-vesely-authmethod-dnswl
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/apps-discuss/>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Apr 2016 18:01:47 -0000

On Mon 04/Apr/2016 23:11:22 +0200 Murray S. Kucherawy wrote:
> On Mon, Apr 4, 2016 at 9:20 AM, Alessandro Vesely <vesely@tana.it> wrote:
> 
>> Can people subscribe to iana-prot-param-comment's?
> 
> Not without just starting to Cc: them (i.e., it's not a list or UI I can
> access), but I'm also not sure it's a good idea to burden their ticketing
> system with a lot of traffic; they don't need to be involved at this phase.

The traffic is not so much.  The problem is it doesn't seem to be publicly
accessible.

> If you want to discuss this in a public forum, apps-discuss@ietf.org is
> certainly a valid choice.  If you want to seek publication via the IETF
> stream (which seems a legitimate thing to do), I would eventually move it
> to dispatch@ietf.org.

Hm... adding CC AppsAWG.  Let's see if anybody is interested.

I still don't think it is worth publishing the I-D, but maybe IETF's list
archives can be considered permanent documents, which can be referenced by
items added after Expert Review, no?

> I had a look at your -04.  Thank you for addressing most of my comments and
> suggestions; it's certainly better.  A few non-editorial issues remain:
> 
> - The original ptype.property list has not been updated as discussed, so
> the main problem remains.

The "dns" ptype has its own table there.  Added a more text.  I don't think
this is a useless ptype, since so much stuff is DNS-based...

> - You might want to include an example of use, perhaps in an appendix or in
> a new Section 2.1, so people can see what's going on.

A bare example was there already.  Fully expanded.

<pissed off>
So delighted of the new text, I managed to screw up policy.txt, which is
exactly what was to be exemplified :-/

It should read:

  Authentication-Results: mta.example.org;
      dnswl=pass dns.zone=list.dnswl.example
      policy.ip=127.0.10.1
      policy.txt="fwd.example http://fwd.example/s?s=100"

</pissed off>

> - You mention the need to "determine the color of x".  Doesn't an MTA
> making a query to a DNSxL know what the color of "x" is already?

Yes.  This is detailed in the last paragraph of the example (A.1).

> - Section 2 changed "fail" to "none", but Table 3 in Section 3 did not.

Thanks.

> - There is now a reference to RFC7719, but no use of that reference
> anywhere in the body of the document.

Dropped.

Ale

-------- Forwarded Message --------
Subject: New Version Notification for draft-vesely-authmethod-dnswl-05.txt
Date: Wed, 13 Apr 2016 10:19:28 -0700
From: internet-drafts@ietf.org
To: Alessandro Vesely <vesely@tana.it>


A new version of I-D, draft-vesely-authmethod-dnswl-05.txt
has been successfully submitted by Alessandro Vesely and posted to the
IETF repository.

Name:		draft-vesely-authmethod-dnswl
Revision:	05
Title:		DNSWL Email Authentication Method Extension
Document date:	2016-04-13
Group:		Individual Submission
Pages:		7
URL:
https://www.ietf.org/internet-drafts/draft-vesely-authmethod-dnswl-05.txt
Status:         https://datatracker.ietf.org/doc/draft-vesely-authmethod-dnswl/
Htmlized:       https://tools.ietf.org/html/draft-vesely-authmethod-dnswl-05
Diff:           https://www.ietf.org/rfcdiff?url2=draft-vesely-authmethod-dnswl-05

Abstract:
   This document describes an additional Email Authentication Method
   compliant with RFC 7601.  The method consists in looking up the
   sender'IP in a DNS whitelist.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat