Re: [dane] Start of WGLC for draft-ietf-dane-registry-acronym

Viktor Dukhovni <viktor1dane@dukhovni.org> Thu, 03 October 2013 21:11 UTC

Date: Thu, 03 Oct 2013 20:58:29 +0000
From: Viktor Dukhovni <viktor1dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20131003205829.GP483@mournblade.imrryr.org>
References: <20130919201216.14866.61161.idtracker@ietfa.amsl.com> <EACEEB05-2023-4F76-A6FE-A9B2FDC0AA59@kumari.net> <0lpprmumeb.fsf@wjh.hardakers.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <0lpprmumeb.fsf@wjh.hardakers.net>
User-Agent: Mutt/1.5.21 (2010-09-15)
Subject: Re: [dane] Start of WGLC for draft-ietf-dane-registry-acronym
Precedence: list
Reply-To: dane@ietf.org

On Thu, Oct 03, 2013 at 01:31:24PM -0700, Wes Hardaker wrote:

> 5) security considerations
> 
>    There is definitely something to consider if someone publishes both
>    name records along with number records, and the client only parses
>    number records.  What happens with this:
> 
>    _666._tcp.first.example.   TLSA 3       1    1        {blob}
>    _666._tcp.first.example.   TLSA DANE-TA SPKI SHA2-256 {blob}
> 
>    Something needs to be said for that case; what would an existing
>    implementation do?  drop both? take one?  Either way, it should be
>    discussed/mentioned.

I'm confused I thought these were just user friendly names...  The
wire format of the DNS TLSA record is surely unchanged.  In which
case it is impossible to publish the second form, it is just an
input format in documentation (and perhaps source form zone files
in supporting DNS servers), but not a wire format.

-- 
	Viktor.

[dane] I-D Action: draft-ietf-dane-registry-acron… internet-drafts
[dane] Start of WGLC for draft-ietf-dane-registry… Warren Kumari
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Andreas Schulze
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Yoav Nir
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Stephen Farrell
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Warren Kumari
Re: [dane] Start of WGLC for draft-ietf-dane-regi… James Cloos
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… James Cloos
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Olle E. Johansson
Re: [dane] Start of WGLC for draft-ietf-dane-regi… James Cloos
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Paul Hoffman
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Wes Hardaker
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Warren Kumari
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Wes Hardaker
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Wes Hardaker
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Warren Kumari
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Jim Schaad
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Mark Andrews
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Stephen Kent
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Jim Schaad
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Jim Schaad
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Olafur Gudmundsson
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Olafur Gudmundsson
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Olafur Gudmundsson
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Warren Kumari
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Olafur Gudmundsson
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Viktor Dukhovni
Re: [dane] Start of WGLC for draft-ietf-dane-regi… Jim Schaad