[DNSOP] Fwd: Re: *[AD] Fwd: AUTH48 [LB]: RFC 7873 <draft-ietf-dnsop-cookies-10.txt> NOW AVAILABLE
joel jaeggli <joelja@bogus.com> Tue, 17 May 2016 15:28 UTC
Return-Path: <joelja@bogus.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF3F212D172 for <dnsop@ietfa.amsl.com>; Tue, 17 May 2016 08:28:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.326
X-Spam-Level:
X-Spam-Status: No, score=-8.326 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-1.426] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4VKnOHS-BPge for <dnsop@ietfa.amsl.com>; Tue, 17 May 2016 08:28:55 -0700 (PDT)
Received: from nagasaki.bogus.com (nagasaki.bogus.com [IPv6:2001:418:1::81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E62FF12B04E for <dnsop@ietf.org>; Tue, 17 May 2016 08:28:54 -0700 (PDT)
Received: from mb-2.local ([IPv6:2601:647:4204:51:591a:551d:2ead:2204]) (authenticated bits=0) by nagasaki.bogus.com (8.15.2/8.15.2) with ESMTPSA id u4HFSscX055917 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for <dnsop@ietf.org>; Tue, 17 May 2016 15:28:54 GMT (envelope-from joelja@bogus.com)
X-Authentication-Warning: nagasaki.bogus.com: Host [IPv6:2601:647:4204:51:591a:551d:2ead:2204] claimed to be mb-2.local
References: <d1a4d36f-1f09-1441-1df8-ccca01021977@bogus.com>
To: "dnsop@ietf.org" <dnsop@ietf.org>
From: joel jaeggli <joelja@bogus.com>
X-Forwarded-Message-Id: <d1a4d36f-1f09-1441-1df8-ccca01021977@bogus.com>
Message-ID: <271c084c-005e-dfca-ecb8-fb7756269933@bogus.com>
Date: Tue, 17 May 2016 08:28:53 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:45.0) Gecko/20100101 Thunderbird/45.1
MIME-Version: 1.0
In-Reply-To: <d1a4d36f-1f09-1441-1df8-ccca01021977@bogus.com>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="J7FdgCR9lRA1Xr1cPjlOJ5Pmq4gDdnXfu"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/YMc3laToCQaKw1DlEMpoaug3W7Q>
Subject: [DNSOP] Fwd: Re: *[AD] Fwd: AUTH48 [LB]: RFC 7873 <draft-ietf-dnsop-cookies-10.txt> NOW AVAILABLE
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 May 2016 15:28:58 -0000
FYI draft-ietf-dnsop-cookies now normatively includes RFC 7120 Thanks joel -------- Forwarded Message -------- Subject: Re: *[AD] Fwd: AUTH48 [LB]: RFC 7873 <draft-ietf-dnsop-cookies-10.txt> NOW AVAILABLE Date: Tue, 17 May 2016 08:25:46 -0700 From: joel jaeggli <joelja@bogus.com> To: Lynne Bartholomew <lbartholomew@amsl.com> CC: RFC Editor <rfc-editor@rfc-editor.org> On 5/16/16 5:00 PM, Lynne Bartholomew wrote: > Dear Joel, > > Forwarding this email directly to you. > > Thank you. > > RFC Editor/lb > > Begin forwarded message: > >> *From: *rfc-editor@rfc-editor.org <mailto:rfc-editor@rfc-editor.org> >> *Subject: **[AD] Re: AUTH48 [LB]: RFC 7873 >> <draft-ietf-dnsop-cookies-10.txt> NOW AVAILABLE* >> *Date: *May 16, 2016 at 3:27:43 PM PDT >> *To: *d3e3e3@gmail.com <mailto:d3e3e3@gmail.com>, marka@isc.org >> <mailto:marka@isc.org> >> *Cc: *rfc-editor@rfc-editor.org <mailto:rfc-editor@rfc-editor.org>, >> dnsop-ads@ietf.org <mailto:dnsop-ads@ietf.org>, dnsop-chairs@ietf.org >> <mailto:dnsop-chairs@ietf.org>, tjw.ietf@gmail.com >> <mailto:tjw.ietf@gmail.com> >> >> Authors, AD*, >> >> *Joel, please reply regarding #1. >> >> 1) [AD] Per author feedback earlier in the process, RFC 7120 is now >> cited in Section 8 and listed it as a Normative Reference. Please let >> us know if you approve. >> >> Original: >> IANA has assigned the following DNS error code as an early >> allocation: >> >> Changed to: >> IANA has assigned the following DNS error code as an early allocation >> per [RFC7120]: >> ... >> [RFC7120] Cotton, M., "Early IANA Allocation of Standards Track Code >> Points", BCP 100, RFC 7120, DOI 10.17487/RFC7120, >> January 2014, >> <http://www.rfc-editor.org/info/rfc7120>. this is fine I approve, I am informing the working group. >> >> 2) We changed instances of "HMAC-SHA256" to "HMAC-SHA-256" (and >> "HMAC-SHA1" to "HMAC-SHA-1") to match [RFC6234], which is cited. >> However, the document also uses "HMAC-SHA256-64", which matches the >> IANA-registered description from RFC 6696. Please review whether the >> current text -- with this apparent inconsistency (hyphen vs. no hyphen >> after "SHA") -- is correct. So I'm hardly and informed reference on these things however; SHA-1 is a proper name whereas SHA256/SHA-256 is a concatentation of (SHA + (the number of key bits)) . rfc 4291 seperates them with dashes. https://tools.ietf.org/html/rfc4231 6696s convention is This field indicates the integrity algorithm used for ERP. Key lengths and output lengths are either indicated or are obvious from the cryptosuite name. e.g. HMAC-SHA256-64 that's fine since it's now written in stone but it's not necessary to indicate the output length most of the time... If you're using the iana description then by all means proceed. >> >> 3) Please let us know if any changes are needed for the following >> items, which are about terminology across the Cluster 284 of >> documents, which includes these documents in addition to RFC-to-be 7873. >> >> RFC 7828 (draft-ietf-dnsop-edns-tcp-keepalive) >> draft-ietf-dprive-dns-over-tls (RFC-to-be 7858) in AUTH48-DONE >> draft-ietf-dnsop-edns-chain-query in EDIT*R >> draft-ietf-dane-openpgpkey in EDIT*R >> >> a) The following terms were used inconsistently in this cluster of >> documents. We have updated the document to use the forms on the right. >> Please let us know any objections. >> >> Resolver / resolver* >> Recursive Resolver / recursive resolver* no objection >> * Per more common usage in recently published RFCs >> >> b) The following terms are used inconsistently in this cluster of >> documents. Please let us know which form is preferred. >> >> answer section / Answer Section** >> querying / QUERYing 5.4 QUERYing for a Server Cookie gives me pain. yes QUERY is the opcode; Querying is what is being done. Answer Section is probably fine I assume that probably comes from rfc 1035 (upper case answer) though that uses it exclusively lower case (10 times) 4.1. Format All communications inside of the domain protocol are carried in a single format called a message. The top level format of message is divided into 5 sections (some of which are empty in certain cases) shown below: +---------------------+ | Header | +---------------------+ | Question | the question for the name server +---------------------+ | Answer | RRs answering the question +---------------------+ | Authority | RRs pointing toward an authority +---------------------+ | Additional | RRs holding additional information +---------------------+ >> ** Usage in recent RFCs is mixed. FYI that we see "question section" >> used in this cluster of documents. >> >> Thank you. >> RFC Editor/lb/ar >> >> On May 16, 2016, rfc-editor@rfc-editor.org >> <mailto:rfc-editor@rfc-editor.org> wrote: >> >> *****IMPORTANT***** >> >> Updated 2016/05/16 >> >> RFC Author(s): >> -------------- >> >> Instructions for Completing AUTH48 >> >> This is your last chance to make changes to your RFC-to-be: >> draft-ietf-dnsop-cookies-10.txt. >> Once the document is published as an RFC, we will not make changes. >> Please follow the instructions below to complete the AUTH48 process. >> (For frequently asked questions, please see >> https://www.rfc-editor.org/faq/#auth48.) >> >> 1) Review the edited document completely. The files are available here: >> >> https://www.rfc-editor.org/authors/rfc7873.txt >> https://www.rfc-editor.org/authors/rfc7873-diff.html >> >> We recommend reviewing the entire document, not just the diff file. >> FYI, https://tools.ietf.org/rfcdiff provides tools to make various >> kinds of diff files. >> >> 2) Review and resolve (as necessary) any questions raised by the RFC >> Editor. >> The questions (if any) will be sent in a subsequent AUTH48 email. >> >> 3) Send us your changes or respond with your approval for publication. >> Please use 'REPLY ALL' so that rfc-editor@rfc-editor.org >> <mailto:rfc-editor@rfc-editor.org> and the parties >> CC'ed on this message receive your response. Note that your document will >> not move forward until we have received approvals from each of the >> authors listed on the front page. >> >> If sending changes, please provide us with an explicit list of changes >> via email. Please send the changes in this format: >> >> Section # (or indicate Global) >> >> OLD: >> old text >> >> NEW: >> new text >> >> Be sure to pay particular attention to these areas of the document: >> - IANA Considerations updates (if applicable) >> - Contact information >> - Copyright notice and legends (see item 6 for more details) >> >> 4) Send a list of suitable keywords for this document (beyond those >> that appear in the title) for use on https://www.rfc-editor.org/search >> >> 5) Review changes submitted by your coauthors (if any). We assume that >> you will speak up if you do not agree with the proposed changes. >> That is, your silence is your assent to changes submitted by your >> coauthors. Note that any changes that are beyond editorial will be >> sent to the relevant body for approval. >> >> 6) Review the copyright notice and legends as defined in RFC 5378 and the >> Trust Legal Provisions (TLP -- https://trustee.ietf.org/license-info/). >> >> If your document was approved for publication with a pre-RFC-5378 >> copyright notice, we have applied the text from section 6.c.iii of the >> TLP. Please consider whether this text is required (note that the >> 6.c.iii text is not applicable to Alternate Stream RFCs). See item >> 4.5 of the "Copyright FAQ" at https://trustee.ietf.org/faq.html for >> guidance on whether this text applies to your document. >> >> 7) Please reply, as the document will not be published until we receive >> approvals from each author. The details of the AUTH48 status of your >> document are here: >> >> https://www.rfc-editor.org/auth48/rfc7873 >> >> Thank you for your cooperation, >> >> RFC Editor >> >> -------------------------------------- >> RFC7873 (draft-ietf-dnsop-cookies-10) >> -------------------------------------- >> Title : Domain Name System (DNS) Cookies >> Author(s) : D. Eastlake 3rd, M. Andrews >> WG Chair(s) : Suzanne Woolf, Tim Wicinski >> Area Director(s) : Benoit Claise, Joel Jaeggli >> >
- [DNSOP] Fwd: Re: *[AD] Fwd: AUTH48 [LB]: RFC 7873… joel jaeggli