[DNSOP] wrapping up draft-ietf-dnsop-nsec3-guidance
Wes Hardaker <wjhns1@hardakers.net> Wed, 20 October 2021 18:24 UTC
Return-Path: <wjhns1@hardakers.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C2E53A0C43 for <dnsop@ietfa.amsl.com>; Wed, 20 Oct 2021 11:24:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sOfsB8cBEV7y for <dnsop@ietfa.amsl.com>; Wed, 20 Oct 2021 11:24:49 -0700 (PDT)
Received: from mail.hardakers.net (mail.hardakers.net [168.150.192.181]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F6D53A0C3A for <dnsop@ietf.org>; Wed, 20 Oct 2021 11:24:49 -0700 (PDT)
Received: from localhost (unknown [10.0.0.3]) by mail.hardakers.net (Postfix) with ESMTPA id 0B8EC24297 for <dnsop@ietf.org>; Wed, 20 Oct 2021 11:24:48 -0700 (PDT)
From: Wes Hardaker <wjhns1@hardakers.net>
To: dnsop@ietf.org
Date: Wed, 20 Oct 2021 11:24:47 -0700
Message-ID: <yblh7db366o.fsf@w7.hardakers.net>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/hNdEkhESFTE2DKNRNEIeKo4aIg4>
Subject: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-guidance
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Oct 2021 18:24:52 -0000
Good folks, I think that draft-ietf-dnsop-nsec3-guidance is fairly well boiled, so I'm asking for a last call on moving toward a last call. The draft is intentionally short and to the point but at the same time we've waited a while to see what the industry would do with the guidance. Viktor's recent measurements have very much shown acceptance of the document as a whole, and certainly of the proposed 150 iteration cap. But, as Viktor indicated in his posts, we could move even lower (100 being the next obvious step, but even lower is possible to still retain a reasonable percentage). But there is of course a risk of we'll never get to a definitive value, and may operators by constantly lowering it and they have to keep changing values. So, the question: what's the right FINAL value to put in the draft before LC? -- Wes Hardaker USC/ISI
- [DNSOP] wrapping up draft-ietf-dnsop-nsec3-guidan… Wes Hardaker
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Peter van Dijk
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Matthijs Mekking
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Miek Gieben
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Matthijs Mekking
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Paul Vixie
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Vladimír Čunát
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Viktor Dukhovni
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Vladimír Čunát
- Re: [DNSOP] wrapping up draft-ietf-dnsop-nsec3-gu… Viktor Dukhovni