IETF Logo Mail Archive

Re: [dane] making ietf.org eat the DANE dogfood

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 22 May 2013 10:57 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F144621F961C for <dane@ietfa.amsl.com>; Wed, 22 May 2013 03:57:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g7mETbkBCiSD for <dane@ietfa.amsl.com>; Wed, 22 May 2013 03:57:41 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id 9F15F21F9600 for <dane@ietf.org>; Wed, 22 May 2013 03:57:39 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 94444BE88; Wed, 22 May 2013 11:57:15 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W9rcBcwQSD-l; Wed, 22 May 2013 11:57:15 +0100 (IST)
Received: from [IPv6:2001:770:10:203:2d35:f3c0:f38c:289f] (unknown [IPv6:2001:770:10:203:2d35:f3c0:f38c:289f]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 741CBBE77; Wed, 22 May 2013 11:57:15 +0100 (IST)
Message-ID: <519CA48B.4060903@cs.tcd.ie>
Date: Wed, 22 May 2013 11:57:15 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130510 Thunderbird/17.0.6
MIME-Version: 1.0
To: Peter Saint-Andre <stpeter@stpeter.im>
References: <519BD393.7020302@ieca.com> <519BD433.6090609@stpeter.im>
In-Reply-To: <519BD433.6090609@stpeter.im>
X-Enigmail-Version: 1.5.1
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: dane@ietf.org
Subject: Re: [dane] making ietf.org eat the DANE dogfood
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 May 2013 10:57:46 -0000

On 05/21/2013 09:08 PM, Peter Saint-Andre wrote:
> On 5/21/13 2:05 PM, Sean Turner wrote:
>> I've been informally asking around about what people might think
>> about requesting that ietf.org add support for DANE.  Support isn't
>> there yet in the browsers but folks have to deploy it on the server
>> side and I think it might as well be us.  I know it's likely not
>> going to be be as simple just asking, but I'd hear what the WG
>> thinks about the idea.
> 
> +1 to eating our own dogfood.
> 
> In this case, what exactly does that mean? DANE support for the
> website(s) (HTTPS), mailing lists (SMTP), chatrooms (XMPP), other?

Taking a guess, the initial thing will probably be to get the
tools/AMS folks familiar with whatever tools are out there,
then probably publish TLSA records for the web sites (while
keeping the CA certs of course) and after that we'll see. I
wouldn't be surprised if the SMTP/TLS with DANE thing was the
first one to offer benefits, but its maybe still a little
early for that just yet.

Cheers,
S.


> 
> Peter
> 
> _______________________________________________
> dane mailing list
> dane@ietf.org
> https://www.ietf.org/mailman/listinfo/dane
>

v2.23.0 | Report a Bug | By Email