Re: [apps-discuss] AppsDir Review of draft-ietf-appsawg-acct-uri-03
Dave Cridland <dave@cridland.net> Wed, 27 March 2013 08:47 UTC
Return-Path: <dave@cridland.net>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08BF521F90E1 for <apps-discuss@ietfa.amsl.com>; Wed, 27 Mar 2013 01:47:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KliVM-8WD5p5 for <apps-discuss@ietfa.amsl.com>; Wed, 27 Mar 2013 01:47:37 -0700 (PDT)
Received: from mail-ob0-x232.google.com (mail-ob0-x232.google.com [IPv6:2607:f8b0:4003:c01::232]) by ietfa.amsl.com (Postfix) with ESMTP id E509321F90DE for <apps-discuss@ietf.org>; Wed, 27 Mar 2013 01:47:36 -0700 (PDT)
Received: by mail-ob0-f178.google.com with SMTP id wd20so8032680obb.9 for <apps-discuss@ietf.org>; Wed, 27 Mar 2013 01:47:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cridland.net; s=google; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:cc:content-type; bh=mWSVvSiA7up9u50UPdrrx2rz1TBEDxpo6Y9+3JRuFvI=; b=HQyW+RcRLI+QdR9Q4gWAM6a3GHOWUu02JLpLARgOBUibwcv8RJ9DISG1LFcMtxbwkh C+0a7IRPYjw8SWYFFXGnkyR50xTh1FbMpgWBwThJajgr7mBnRL5EuTeSM5KuV3jUrkix syf4Jud/w4PXTg25IE+s5wdWQjlXk6jm78zbw=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:x-gm-message-state; bh=mWSVvSiA7up9u50UPdrrx2rz1TBEDxpo6Y9+3JRuFvI=; b=elIFrMs2pwUaTVBJ1FtGnd4BP9vpYpaMFOY4TgFhKK8Oi7ao/d7QvQu8iTW07knNNY TQyegvxdcWuaTYWOsWPoIv1V3IfphiCwGjtz8/Da958Uz+oTg1AcvY8BAd4Ocnn13YDG VGEY4UGb3rBaEF/s74iaLeANntU91OD/jKJZG51vz7ePTVD8cso/zv05fd43IB2l9T68 mTbJw0fkLN11TOqe4l9+Gixo9u2X8TulY5r16dKh0uFm3+ttchqCaZ8mz2q85yZosZtt ZUWcYXOvZXJe4qKPKwW8QTxj7Y3Cdu81A8Mq2/BCouPaJOtRNVFYwCoi+9MOn4Sb8dJH Fsyw==
MIME-Version: 1.0
X-Received: by 10.60.117.3 with SMTP id ka3mr1334516oeb.67.1364374055813; Wed, 27 Mar 2013 01:47:35 -0700 (PDT)
Received: by 10.60.22.105 with HTTP; Wed, 27 Mar 2013 01:47:35 -0700 (PDT)
Received: by 10.60.22.105 with HTTP; Wed, 27 Mar 2013 01:47:35 -0700 (PDT)
In-Reply-To: <583081CD-147D-4DFD-8C9A-E02F06F2E0EB@cisco.com>
References: <CAKHUCzwWppyp0kY0GfgeUQPbE4_JMA3i1pZTdY6KAQ4pGJeKbA@mail.gmail.com> <583081CD-147D-4DFD-8C9A-E02F06F2E0EB@cisco.com>
Date: Wed, 27 Mar 2013 08:47:35 +0000
Message-ID: <CAKHUCzyOmoS-HpjXmgBzVrhQ09wKM9yW4iKBpovAq=zOO97oEQ@mail.gmail.com>
From: Dave Cridland <dave@cridland.net>
To: Peter Saint-Andre <psaintan@cisco.com>
Content-Type: multipart/alternative; boundary="047d7b417ffbf018fa04d8e416a6"
X-Gm-Message-State: ALoCoQl3jsQbhvaLVTSvhvPRyazv3x1Q89LpM8R9jrIHQStlkSsJbIl9oHUQbfbEnxn6lEwsVKrZ
Cc: draft-ietf-appsawg-acct-uri.all@tools.ietf.org, iesg@ietf.org, apps-discuss@ietf.org
Subject: Re: [apps-discuss] AppsDir Review of draft-ietf-appsawg-acct-uri-03
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Mar 2013 08:47:38 -0000
Thanks. This completely satisfies my comments. On 27 Mar 2013 02:02, "Peter Saint-Andre" <psaintan@cisco.com> wrote: > On Mar 11, 2013, at 9:38 AM, Dave Cridland wrote: > > I have been selected as the Applications Area Directorate reviewer for > this draft (for background on appsdir, please see > http://trac.tools.ietf.org/area/app/trac/wiki/ApplicationsAreaDirectorate). > > Please resolve these comments along with any other Last Call comments you > may receive. Please wait for direction from your document shepherd or AD > before posting a new version of the draft. > Document: draft-ietf-appsawg-webfinger-11 > Title: The 'acct' URI Scheme > Reviewer: Dave Cridland > Review Date: 2013/03/11 > > Summary: Ready for publication as Standards Track. Although I note one > possible additional security consideration it is minor. > > Editorial Comments: > > 1) I do love the use of "discussants", but I hesitantly wonder if the more > common (if less specific) "participants" would be a more readily understood > choice of word? > > > I'll change it "the participants in that discussion". > > Minor Comments: > > 1) I note that an acct scheme URI provides proof of existence of the > account; this implies that harvesting published acct URIs would be useful > for spammers and similar attackers, if they can also use this to leverage > more information about the account (such as via WebFinger). > > > Good point. I'll add text to the Security Considerations on this point > (expect a revised I-D at some point in the near future). > > Peter > > >
- Re: [apps-discuss] AppsDir Review of draft-ietf-a… Dave Cridland
- Re: [apps-discuss] AppsDir Review of draft-ietf-a… Peter Saint-Andre