[dnsext] Re: [Ext] [DNSOP] Re: [Technical Errata Reported] RFC4035 (8037)

Paul Hoffman <paul.hoffman@icann.org> Fri, 02 August 2024 15:38 UTC

Return-Path: <paul.hoffman@icann.org>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A0B7C14F681; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YOQgIyuQTJ2e; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
Received: from ppa3.lax.icann.org (ppa3.lax.icann.org [192.0.33.78]) by ietfa.amsl.com (Postfix) with ESMTP id 2E813C14F610; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
Received: from MBX112-W2-CO-2.pexch112.icann.org (out.mail.icann.org [64.78.33.6]) by ppa3.lax.icann.org (8.18.1.2/8.18.1.2) with ESMTPS id 472FahBu031759 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 2 Aug 2024 15:36:44 GMT
Received: from MBX112-W2-CO-1.pexch112.icann.org (10.226.41.128) by MBX112-W2-CO-2.pexch112.icann.org (10.226.41.130) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Fri, 2 Aug 2024 08:36:42 -0700
Received: from MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) by MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) with mapi id 15.02.1544.011; Fri, 2 Aug 2024 08:36:42 -0700
From: Paul Hoffman <paul.hoffman@icann.org>
To: Elias Heftrig <elias.heftrig@sit.fraunhofer.de>
Thread-Topic: [Ext] [DNSOP] Re: [dnsext] [Technical Errata Reported] RFC4035 (8037)
Thread-Index: AQHa4fjBKah9NXCPy0qxd+I4UEci77IPniYAgARXBRSAAI3bgIAAD8yAgAACIQA=
Message-ID: <41A9AE95-3BE9-4DD0-B540-B44CF4EC0999@icann.org>
References: <20240718154431.808BD7FA60@rfcpa.rfc-editor.org> <A1D2718C-186F-4D80-A148-C4A9973F78B6@hactrn.net> <51FBDFB8-263C-41D8-9BDF-BD67A26DF998@nist.gov> <b705f274-3e69-4dcd-98b0-023165aee7d3@sit.fraunhofer.de> <B75EDCC4-87AF-4733-A63A-E7A1515BEF9E@nist.gov> <dddfa1d7-fdd4-413f-a2a7-5bda3da5a46c@sit.fraunhofer.de> <A123EBD2-55B3-4EAF-8676-F726FDD377B5@proper.com> <PH0PR11MB49666DF5324D7BC7C13D9EE3A9B32@PH0PR11MB4966.namprd11.prod.outlook.com> <F08021A4-BD7B-43D9-B99A-F7AC8D5190B5@icann.org> <c87fc42f-9e00-493f-b170-b2d14d0efa0d@sit.fraunhofer.de>
In-Reply-To: <c87fc42f-9e00-493f-b170-b2d14d0efa0d@sit.fraunhofer.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.0.32.234]
x-source-routing-agent: True
Content-Type: text/plain; charset="us-ascii"
Content-ID: <789C4FD36E951241A7C5599CA2F6D9C1@pexch112.icann.org>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-08-02_11,2024-08-02_01,2024-05-17_01
X-MailFrom: paul.hoffman@icann.org
X-Mailman-Rule-Hits: max-recipients
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsext.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-size; news-moderation; no-subject; digests; suspicious-header
Message-ID-Hash: FJJP777ZOA7F3Z2DPGQFFAY66RPQTD7G
X-Message-ID-Hash: FJJP777ZOA7F3Z2DPGQFFAY66RPQTD7G
X-Mailman-Approved-At: Tue, 06 Aug 2024 06:38:58 -0700
CC: "Eric Vyncke (evyncke)" <evyncke=40cisco.com@dmarc.ietf.org>, "Rose, Scott W. (Fed)" <scott.rose@nist.gov>, Rob Austein <sra@hactrn.net>, RFC Editor <rfc-editor@rfc-editor.org>, Rob Austein <sra@isc.org>, "massey@cs.colostate.edu" <massey@cs.colostate.edu>, "ek.ietf@gmail.com" <ek.ietf@gmail.com>, Olafur Gudmundsson <ogud@ogud.com>, "dnsext@ietf.org" <dnsext@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "Schulmann, Haya" <haya.schulmann@sit.fraunhofer.de>, "Vogel, Niklas" <niklas.vogel@sit.fraunhofer.de>, "Waidner, Michael" <michael.waidner@sit.fraunhofer.de>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [dnsext] Re: [Ext] [DNSOP] Re: [Technical Errata Reported] RFC4035 (8037)
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsext/YpREoCqIKX2LDCKn_IXgpqhqjKU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsext>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Owner: <mailto:dnsext-owner@ietf.org>
List-Post: <mailto:dnsext@ietf.org>
List-Subscribe: <mailto:dnsext-join@ietf.org>
List-Unsubscribe: <mailto:dnsext-leave@ietf.org>
Date: Fri, 02 Aug 2024 15:38:18 -0000
X-Original-Date: Fri, 2 Aug 2024 15:36:42 +0000

On Aug 2, 2024, at 08:29, Elias Heftrig <elias.heftrig@sit.fraunhofer.de> wrote:
> 

> is the other thread dealing with these errata on dnsop? Mail archive searches for RFC8640 and errata report 8038 were unsuccessful. Would be glad to be pointed to it.

The thread is not dealing with this erratum report (which is not an erratum but a request for update), but it is dealing with the same issue of validator trying all the signatures and thus possibly being DDoSed.

--Paul Hoffman