IETF Logo Mail Archive

Re: [DNSOP] Terry Manderson's Discuss on draft-ietf-dnsop-dnssec-roadblock-avoidance-04: (with DISCUSS and COMMENT)

Terry Manderson <terry.manderson@icann.org> Thu, 04 August 2016 04:19 UTC

Return-Path: <terry.manderson@icann.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 348AA12B037; Wed, 3 Aug 2016 21:19:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.488
X-Spam-Level:
X-Spam-Status: No, score=-5.488 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.287, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C9pL9YyWFOJ5; Wed, 3 Aug 2016 21:19:04 -0700 (PDT)
Received: from out.west.pexch112.icann.org (pfe112-ca-2.pexch112.icann.org [64.78.40.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4C83812B01F; Wed, 3 Aug 2016 21:19:04 -0700 (PDT)
Received: from PMBX112-W1-CA-1.pexch112.icann.org (64.78.40.21) by PMBX112-W1-CA-2.pexch112.icann.org (64.78.40.23) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Wed, 3 Aug 2016 21:19:02 -0700
Received: from PMBX112-W1-CA-1.pexch112.icann.org ([64.78.40.21]) by PMBX112-W1-CA-1.PEXCH112.ICANN.ORG ([64.78.40.21]) with mapi id 15.00.1178.000; Wed, 3 Aug 2016 21:19:01 -0700
From: Terry Manderson <terry.manderson@icann.org>
To: Wes Hardaker <wjhns1@hardakers.net>
Thread-Topic: Terry Manderson's Discuss on draft-ietf-dnsop-dnssec-roadblock-avoidance-04: (with DISCUSS and COMMENT)
Thread-Index: AQHR7dnbeO/wBuM4iE+R+AoAuqAmlqA5T+wA
Date: Thu, 04 Aug 2016 04:19:00 +0000
Message-ID: <D3C8FF28.98040%terry.manderson@icann.org>
References: <20160706042557.22326.91200.idtracker@ietfa.amsl.com> <0ly45bsn4e.fsf@wjh.hardakers.net> <D3AC09DC.95840%terry.manderson@icann.org> <CAKKJt-dWcaxmwSi9ANDX+wf6+Q16Q-7U8S9T3XamvPzQP1Fy4A@mail.gmail.com> <D3AD65CB.95A88%terry.manderson@icann.org> <0l4m71o46j.fsf@wjh.hardakers.net>
In-Reply-To: <0l4m71o46j.fsf@wjh.hardakers.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.6.6.160626
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [192.0.32.234]
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha1"; boundary="B_3553165138_37418765"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/cLBzXr6AoieaAyZGefKF5ubNOj4>
Cc: "tjw.ietf@gmail.com" <tjw.ietf@gmail.com>, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "draft-ietf-dnsop-dnssec-roadblock-avoidance@ietf.org" <draft-ietf-dnsop-dnssec-roadblock-avoidance@ietf.org>, Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, The IESG <iesg@ietf.org>
Subject: Re: [DNSOP] Terry Manderson's Discuss on draft-ietf-dnsop-dnssec-roadblock-avoidance-04: (with DISCUSS and COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Aug 2016 04:19:06 -0000

That works for me.

Cheers
Terry

On 4/08/2016, 8:53 AM, "Wes Hardaker" <wjhns1@hardakers.net> wrote:

>Terry Manderson <terry.manderson@icann.org> writes:
>
>> Hi Spencer,
>>
>> On 14/07/2016, 12:57 PM, "Spencer Dawkins at IETF"
>> <spencerdawkins.ietf@gmail.com> wrote:
>>>
>>>Terry, I like where you're headed, but just to ask the obvious question,
>>>are you thinking the draft would, or would not, also contain something
>>>like "at the time this document was approved, a domain used for this
>>>test
>>>was $someactualworkingdomain.com <http://someactualworkingdomain.com>"?
>>
>> Sorry I didn't make it obvious, yes I would like to see text like this,
>> and I think it makes an easy path for the less adventurous in addition
>>to
>> supplying more in depth guidance.
>
>How does this text work to be dropped into the end of the
>"Implementation experiences" section (1.3):
>
>      <section title="Test Zone Implementation">
>	      <t>In this document, the "test.example.com" domain is
>	      used to refer to DNS records which contain test records
>	      that have known DNSSEC properties associated with them.
>	      For example, the "badsign-a.test.example.com" domain is
>	      used below to refer to a DNS A record where the
>	      signatures published for it are invalid (i.e., they are
>	      "bad signatures" that should cause a validation
>	      failure).</t>
>
>	      <t>At the time of this publication, the
>	      "test.dnssec-tools.org" domain implements all of these
>	      test records.  Thus, it may be possible to replace
>	      "test.example.com" in this document with
>	      "test.dnssec-tools.org" when performing real-world
>	      tests.</t>
>      </section>
>
>And then everywhere that test.dnssec-tools.org exists in the document,
>I'll replace it with "test.example.com".
>-- 
>Wes Hardaker
>Parsons

v2.23.0 | Report a Bug | By Email