IETF Logo Mail Archive

Re: [dane] Start of WGLC for draft-ietf-dane-openpgpkey - *please* review.

Viktor Dukhovni <ietf-dane@dukhovni.org> Sat, 14 March 2015 19:48 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9AF11A0231 for <dane@ietfa.amsl.com>; Sat, 14 Mar 2015 12:48:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5NqKPJtZ-vuT for <dane@ietfa.amsl.com>; Sat, 14 Mar 2015 12:48:32 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 331ED1A0354 for <dane@ietf.org>; Sat, 14 Mar 2015 12:48:32 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 187B1282FC2; Sat, 14 Mar 2015 19:48:25 +0000 (UTC)
Date: Sat, 14 Mar 2015 19:48:25 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20150314194824.GC27479@mournblade.imrryr.org>
References: <CAHw9_iJPuG23Aok7V_wcAMirua_DPDLHy01tnd+DaUqEeK3NZA@mail.gmail.com> <CAHw9_iKU=inVWUJkj4oR7zc5Fh-ejJRpLfURaeF8J4AxCcz_BQ@mail.gmail.com> <5502E194.4020507@powerdns.com> <alpine.LFD.2.10.1503131404400.22027@bofh.nohats.ca> <15467987-08AA-439A-99AB-22F813C0F841@isode.com> <CAHw9_iLafyHnbnii2huxoR48rybydu-tT4rScm6oo9p==ytkyw@mail.gmail.com> <CAHw9_i+wDiB8EaMb1_v-O3=uH5+jsZjOpzR+xSL7OHpY43wJcA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAHw9_i+wDiB8EaMb1_v-O3=uH5+jsZjOpzR+xSL7OHpY43wJcA@mail.gmail.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/xmLYrqVojQ-Qala0uM2-jIWBvU0>
Subject: Re: [dane] Start of WGLC for draft-ietf-dane-openpgpkey - *please* review.
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dane@ietf.org
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Mar 2015 19:48:33 -0000

On Sat, Mar 14, 2015 at 08:27:51PM +0100, Warren Kumari wrote:

> Oh yeah. I sent this all in a bit of a rush (while waiting for a cab).
> I'm also writing this in a bit of a rush, but I'm still going to have
> to chat with Olafur to try and figure out what we do with the whole
> "many trees" / DNAME issues.

I hope this is a reference to the _prefix issue.  That is, whether
SMIMEA and OPENPGPKEY, ... should share the same _prefix:

    <hash>._<shared-prefix>.example.com. <SMIMEA|OPENPGPKEY|...> ...

so that all DANE records related to a given mailbox are collocated
in DNS.

Perhaps this discussion should continue...  Having one such prefix
is sufficient for separating such data from other data for the
domain.

Having many such prefixes, (at least one each for SMIMEA and
OPENPGPKEY) seems to me to be unnecessary and inelegant.  That is
I think one such prefix is enough for both, and for any other
closely related DANE records.

-- 
	Viktor.

v2.23.0 | Report a Bug | By Email