IETF Logo Mail Archive

Re: [dispatch] New Version Notification for draft-johansson-dispatch-dane-sip-00.txt

"Olle E. Johansson" <oej@edvina.net> Tue, 07 January 2014 19:26 UTC

Return-Path: <oej@edvina.net>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E44F61AE134 for <dispatch@ietfa.amsl.com>; Tue, 7 Jan 2014 11:26:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.25
X-Spam-Level:
X-Spam-Status: No, score=-1.25 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wjlDZFiErqx1 for <dispatch@ietfa.amsl.com>; Tue, 7 Jan 2014 11:26:04 -0800 (PST)
Received: from smtp7.webway.se (smtp7.webway.se [IPv6:2a02:920:212e::205]) by ietfa.amsl.com (Postfix) with ESMTP id DF5451AE133 for <dispatch@ietf.org>; Tue, 7 Jan 2014 11:26:03 -0800 (PST)
Received: from [192.168.40.13] (h87-96-134-129.dynamic.se.alltele.net [87.96.134.129]) by smtp7.webway.se (Postfix) with ESMTPA id A0C7B93C2A1; Tue, 7 Jan 2014 19:25:54 +0000 (UTC)
Content-Type: multipart/alternative; boundary="Apple-Mail=_B8CB0675-67AC-4D4A-BF17-3AA4B62B97F1"
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
From: "Olle E. Johansson" <oej@edvina.net>
In-Reply-To: <CALiegfmXUex+Z4dSnMy5vG2W3UjgTLKtnYAM4j=vp5dn2aFfdg@mail.gmail.com>
Date: Tue, 07 Jan 2014 20:25:54 +0100
Message-Id: <A7C3304F-A767-4B4A-89E9-01D8F074D8F6@edvina.net>
References: <20140102101042.27427.64547.idtracker@ietfa.amsl.com> <0BA14051-5C7F-4416-8CD2-413347D540D3@edvina.net> <52C83591.3080702@alum.mit.edu> <EB6CEF2F-3207-47E7-9463-ACDDEF2A7826@edvina.net> <CALiegfmXUex+Z4dSnMy5vG2W3UjgTLKtnYAM4j=vp5dn2aFfdg@mail.gmail.com>
To: Iñaki Baz Castillo <ibc@aliax.net>
X-Mailer: Apple Mail (2.1827)
Cc: "dispatch@ietf.org list" <dispatch@ietf.org>
Subject: Re: [dispatch] New Version Notification for draft-johansson-dispatch-dane-sip-00.txt
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jan 2014 19:26:06 -0000

On 07 Jan 2014, at 17:17, Iñaki Baz Castillo <ibc@aliax.net> wrote:

> 
> > Those will look for something in some field that's very unspecified. Hard to support. I guess that they will look for something to match in the CN.
> 
> This is not true. SNI does not mean "ignoring SubjectAltNames". SNI just means that the client indicates the desired hostname during the TLS handshake, the server offers a proper certificate for such a hostname, and the client then validates the server certificate following the protocol rules (in case of SIP it means rules in RFC 5922).
> 
Right - where is it documented what a SIP client should provide in a SNI - a domain name, a SIP uri (which matches the SAN) or the host name - which we claim should not be used?

/O

v2.23.0 | Report a Bug | By Email