Re: [dane] Two additions to draft-york-dane-deployment-observations-00

Viktor Dukhovni <ietf-dane@dukhovni.org> Mon, 10 November 2014 06:28 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CD6261A879F for <dane@ietfa.amsl.com>; Sun, 9 Nov 2014 22:28:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 651uaqCsK-Bl for <dane@ietfa.amsl.com>; Sun, 9 Nov 2014 22:28:10 -0800 (PST)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7858B1A88AE for <dane@ietf.org>; Sun, 9 Nov 2014 22:28:10 -0800 (PST)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 80BB42AB109; Mon, 10 Nov 2014 06:28:08 +0000 (UTC)
Date: Mon, 10 Nov 2014 06:28:08 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20141110062808.GQ161@mournblade.imrryr.org>
References: <20141107232915.GA31913@laperouse.bortzmeyer.org> <6DB8CC95-E47A-4C0B-BC0B-7D9A4F8F65B5@edvina.net> <20141109035925.GA20946@laperouse.bortzmeyer.org> <alpine.LFD.2.10.1411100035410.11243@bofh.nohats.ca> <20141110060054.GA18320@laperouse.bortzmeyer.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20141110060054.GA18320@laperouse.bortzmeyer.org>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/1Am0vjKs1NbmnoyEtv5XqB_2OmU
Subject: Re: [dane] Two additions to draft-york-dane-deployment-observations-00
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dane@ietf.org
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Nov 2014 06:28:12 -0000

On Sun, Nov 09, 2014 at 08:00:54PM -1000, Stephane Bortzmeyer wrote:
> On Mon, Nov 10, 2014 at 12:36:41AM -0500,
>  Paul Wouters <paul@nohats.ca> wrote 
>  a message of 17 lines which said:
> 
> > DNSSEC/TLSA Validator is a web browser add-on 
> 
> Not very practical to run automated and unattended tests, for instance
> from Nagios or similar.

Are you going to test SMTP servers, HTTPS servers, or something else?

And if HTTPS servers, why?  (Despite lack of evidence of any
substantive support for DANE in browsers, various experimental
plugins notwithstanding).

-- 
	Viktor.