Re: [DNSOP] Roman Danyliw's No Objection on draft-ietf-dnsop-dns-catalog-zones-08: (with COMMENT)
Peter Thomassen <peter@desec.io> Wed, 04 January 2023 16:11 UTC
Return-Path: <peter@desec.io>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C4BAC1522B1; Wed, 4 Jan 2023 08:11:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.897
X-Spam-Level:
X-Spam-Status: No, score=-6.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=a4a.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2NSpASei2qfj; Wed, 4 Jan 2023 08:11:18 -0800 (PST)
Received: from mail.a4a.de (mail.a4a.de [IPv6:2a01:4f8:10a:1d5c:8000::8]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8307CC1522A2; Wed, 4 Jan 2023 08:11:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=a4a.de; s=20170825; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:From: References:Cc:To:Subject:MIME-Version:Date:Message-ID:Sender:Reply-To: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=w7eOH07MXhg2NQ4Ck0kF9jLszjPT57Adog2HWP0wX+Y=; b=gU+qPX0EV8kvpoey2tMoK35rke Uow0OwMdoKNWycuXPp+yQW/DsBA3zvEFtsggd/2ZDliBH9CQPMmTB9tW2/rLrvjXTA0HcNzb4wleS UsVY0Zk9F8ZXPhjb2TPyCCa+Xa1XfN9xmKnikEz9meQ0uNOhXA/+tn1q5y8CBS6zfRtuhied6zOQS BMZ7tob8+GeVGRT2OOjFc6JdSMIFRM6G7pWftxUc7sJpp4Iaq2ewrx3E4BsK6u1U9DYk3NdftIkW4 ko1VBmhaNeZfxsjRpcL6Au37ldcDm1D00OzcPHhsCXGLxAomXyDryvpxzYxFgpcm87oBI23Le5D9a 9QOTTjHw==;
Received: from [91.65.176.145] (helo=[192.168.178.70]) by mail.a4a.de with esmtpsa (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from <peter@desec.io>) id 1pD6M2-0002AR-W4; Wed, 04 Jan 2023 17:11:04 +0100
Message-ID: <4bb327b4-89dd-ae41-a4e0-65efd46381a7@desec.io>
Date: Wed, 04 Jan 2023 17:11:01 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.4.2
Content-Language: en-US
To: Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
Cc: draft-ietf-dnsop-dns-catalog-zones@ietf.org, dnsop-chairs@ietf.org, dnsop@ietf.org, tjw.ietf@gmail.com
References: <167244220245.48131.16320131444907522967@ietfa.amsl.com>
From: Peter Thomassen <peter@desec.io>
In-Reply-To: <167244220245.48131.16320131444907522967@ietfa.amsl.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/jG4ohC3g6o9xpQFP-gt6IFCTtts>
Subject: Re: [DNSOP] Roman Danyliw's No Objection on draft-ietf-dnsop-dns-catalog-zones-08: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jan 2023 16:11:22 -0000
Hi Roman, Thank you for your review. On 12/31/22 00:16, Roman Danyliw via Datatracker wrote: > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thank you to Catherine Meadows for the SECDIR review. > > I support Murray Kucherawy DISCUSS position. The authors will respond to both of these reviews once we've been able to deal with the points raised. > ** Section 3. > Catalog consumers MUST ignore any RR in the catalog zone which is > meaningless to or otherwise not supported by the implementation. > > Can “meaningless” be more formally described? Are there specific RR which > shouldn’t be in the catalog? This was raised as well by Catherine Meadows and Russ Housley. To hold not up the below, we'll address it in the response to their reviews. > ** Section 3. Editorial. > > The content of catalog zones may not be > accessible from any recursive nameserver. > > Can the intent of this be clarified? Is it saying that the “contents of the > catalog zone may _not necessarily_ be accessible from _all or some_ recursive > nameservers”? or the “contents of the catalog zone _should not be/must not be_ > accessible from any recursive nameserver”? We meant the former, and clarified the wording. The change is part of the following PR that will be merged along with changes from other reviews: https://github.com/NLnetLabs/draft-toorop-dnsop-dns-catalog-zones/pull/55/commits Best, Peter -- https://desec.io/
- [DNSOP] Roman Danyliw's No Objection on draft-iet… Roman Danyliw via Datatracker
- Re: [DNSOP] Roman Danyliw's No Objection on draft… Peter Thomassen