IETF Logo Mail Archive

Re: [DNSOP] Working Group Last Call - draft-ietf-dnsop-rfc5011-security-considerations

Michael StJohns <msj@nthpermutation.com> Wed, 18 October 2017 13:13 UTC

Return-Path: <msj@nthpermutation.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0551A1332CA for <dnsop@ietfa.amsl.com>; Wed, 18 Oct 2017 06:13:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=nthpermutation-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 555ZYQY95h7Y for <dnsop@ietfa.amsl.com>; Wed, 18 Oct 2017 06:13:47 -0700 (PDT)
Received: from mail-qk0-x22b.google.com (mail-qk0-x22b.google.com [IPv6:2607:f8b0:400d:c09::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 96296132143 for <dnsop@ietf.org>; Wed, 18 Oct 2017 06:13:47 -0700 (PDT)
Received: by mail-qk0-x22b.google.com with SMTP id x82so6120567qkb.12 for <dnsop@ietf.org>; Wed, 18 Oct 2017 06:13:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nthpermutation-com.20150623.gappssmtp.com; s=20150623; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=CoLO0U+QapbX0mnVKt18Dc+hAM7j/pdhQtdv5Ov8uD0=; b=mkffN1WMRpKaIaMuHMQlOLMCJifqMlFuMJKi8fhOdtQFtwWxTzK8G3Cbbpm8Nh5XfP tmB5/TcrlhLKBO8nS0Njc/H2AK9aRTw1gReOU96hZ/UsdkrAsgopfEFVddl1HUzyrZ2A X1ao8pYFRJP3yg4vF9U6lTENp1ZQ7E8xpxV94iwIsDCyC5lAM0CtPnCHYfejoPxyjjmn mPkt3NXsDAcRBU7DOY6Qo/gvJHlT4fQlgJeaEw0C1jLRL93YQfUtedpmGWZmei8kvZru 2lSRLM0o88J7n47UrpoTG1wfuENQGdFg/4wV75VjH2z2UkBkXK0ZMIfGu/foq0rqXIFL ufIw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=CoLO0U+QapbX0mnVKt18Dc+hAM7j/pdhQtdv5Ov8uD0=; b=AEER58tZlfRMhLNByCIhT3l6sgy+GmgE825N93ddFnNezKElkKgqTXxnQzYreDKbdp waMk4m++Huv1RUSZHNT6iMMLIMk5DNUDf5K98BLuQli8Ax1BZ+JhsbbuwtXffJwdAZAq Q1KHYel1Fi6AlqDScYQQYpSR8i9L65amj87YpUIgcMIhRR6HoHJ8nvnC3E76FMl0gMZv iYghBLopIYYPdPz6Yfvu4M0JrnJy5OMl81OPh8xRx/AwOZidI9jJo+S0IyAp4+MiCpBO QsrxgZ7cx6Xi4XWBx+Kroe2WHiy4MfBiIIOun4M+UO5xogd53st6JkSd3UVWwvRq0IE8 xNQw==
X-Gm-Message-State: AMCzsaX0OSMJbV/K8mQeFQLJ+EAd+4D0cHhv2AqY5cUcw2pTGj8QzMdo iUQg3yrmNKwmxw9gF9ykqkHPhXXY
X-Google-Smtp-Source: ABhQp+QSOiKUDYRg5QQs7T6kpHzHSqRv3jAe83eN2fegk0kInNJlGDDvYVS+lROagVRUx2HfX1cclw==
X-Received: by 10.55.95.133 with SMTP id t127mr2220434qkb.24.1508332426287; Wed, 18 Oct 2017 06:13:46 -0700 (PDT)
Received: from [192.168.1.114] (c-69-140-114-191.hsd1.md.comcast.net. [69.140.114.191]) by smtp.gmail.com with ESMTPSA id z207sm677490qka.52.2017.10.18.06.13.44 for <dnsop@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 18 Oct 2017 06:13:44 -0700 (PDT)
To: dnsop@ietf.org
References: <CADyWQ+FUOwrK5Qr0DRGopyqxu1ivsJqs3a0KVfrb8yf4-B_OBg@mail.gmail.com>
From: Michael StJohns <msj@nthpermutation.com>
Message-ID: <4571d5a7-8b56-452d-29ef-2e06ceeabeba@nthpermutation.com>
Date: Wed, 18 Oct 2017 09:13:42 -0400
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0
MIME-Version: 1.0
In-Reply-To: <CADyWQ+FUOwrK5Qr0DRGopyqxu1ivsJqs3a0KVfrb8yf4-B_OBg@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------2ECC3D048354DC0B463939FC"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/7SnQOfL2-IXrHgNujXzzYuAIZRE>
Subject: Re: [DNSOP] Working Group Last Call - draft-ietf-dnsop-rfc5011-security-considerations
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Oct 2017 13:13:49 -0000

On 10/18/2017 7:16 AM, tjw ietf wrote:
>
> From talking with the authors and reading all the comments on the 
> mailing lists, it appears that all outstanding issues have been addressed.

Nice try - but no.  I got Wes' responses yesterday and haven't yet 
re-read the document (which was published today with the changes). Given 
the responses I'm pretty sure we've still got problems.  So... NO.

Mike

>
> This starts a Working Group Last Call for: 
> draft-ietf-dnsop-rfc5011-security-considerations
>
> Current versions of the draft is available here:
>
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-rfc5011-security-considerations/
>
> Please review the draft and offer relevant comments. Also, if someone 
> feels the document is *not* ready for publication, please speak out 
> with your reasons.
>
> This starts a two week Working Group Last Call process, and ends on  1 
> November 2017
>
> thanks
> tim
>
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email