IETF Logo Mail Archive

Re: [DNSOP] Alissa Cooper's No Objection on draft-ietf-dnsop-negative-trust-anchors-10: (with COMMENT)

Warren Kumari <warren@kumari.net> Thu, 09 July 2015 01:50 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 337381A6EDA for <dnsop@ietfa.amsl.com>; Wed, 8 Jul 2015 18:50:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-0.7] autolearn=unavailable
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bGmrCiGR6MLV for <dnsop@ietfa.amsl.com>; Wed, 8 Jul 2015 18:50:13 -0700 (PDT)
Received: from mail-oi0-f42.google.com (mail-oi0-f42.google.com [209.85.218.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18FC81A8989 for <dnsop@ietf.org>; Wed, 8 Jul 2015 18:50:09 -0700 (PDT)
Received: by oibp128 with SMTP id p128so18147941oib.3 for <dnsop@ietf.org>; Wed, 08 Jul 2015 18:50:09 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=bFDLa+8o8olgNpVwsG+V8B3ZqVNH/laNEVfqQgGBD10=; b=FkcppYdjUqc06fiFmW/FaP/HzXJOqdwUi7A5Ve2x9NFVqRzUiEPTLlaXw2tMeBeM7Q wrqtdDmIg7GnQ/xnu8VffTGngetBqOU6uZ38TNGPTlo7bF6YDkXb1eIS+f7gqZje1NMs Zj11gP88ichsi5uMKjT5/Y/8IGmLgbeONaGr0MMbxRI+Hx7P6bqG0CjTW4Y1Kp2OuCRw L3Qc9q4Ue7CsnN6kLyBLJOBG5NSiVupN+c9VCW/bhdhiK84hE/vBqXZY4pRVpbdyXGMD lWHoEA4unF1SegGx/ZVg/pUdgZcR9NI7JdPrf07iPWDEh9ODHxMDnevQ2EQg0uZKWcZG Q8Iw==
X-Gm-Message-State: ALoCoQlzEy4h4BS0XmMh0LVgg72r0mgxhACvOfM31pAAoKOgbRFZdTcqKBPIa+vldBhpHf47miI0
MIME-Version: 1.0
X-Received: by 10.182.186.106 with SMTP id fj10mr4029592obc.54.1436406609523; Wed, 08 Jul 2015 18:50:09 -0700 (PDT)
Received: by 10.202.232.1 with HTTP; Wed, 8 Jul 2015 18:50:09 -0700 (PDT)
In-Reply-To: <20150708225400.20543.78092.idtracker@ietfa.amsl.com>
References: <20150708225400.20543.78092.idtracker@ietfa.amsl.com>
Date: Wed, 08 Jul 2015 21:50:09 -0400
Message-ID: <CAHw9_iJ9LPDhhdDby4QW6K354P7rEuxOjTbAVdSmd2td7AAJnw@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Alissa Cooper <alissa@cooperw.in>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/nYNrXlAamoigO-JP1r6ajvu9S4E>
Cc: Tim Wicinski <tjw.ietf@gmail.com>, draft-ietf-dnsop-negative-trust-anchors.ad@ietf.org, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, dnsop <dnsop@ietf.org>, The IESG <iesg@ietf.org>, draft-ietf-dnsop-negative-trust-anchors.shepherd@ietf.org, draft-ietf-dnsop-negative-trust-anchors@ietf.org
Subject: Re: [DNSOP] Alissa Cooper's No Objection on draft-ietf-dnsop-negative-trust-anchors-10: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Jul 2015 01:50:14 -0000

On Wed, Jul 8, 2015 at 6:54 PM, Alissa Cooper <alissa@cooperw.in> wrote:
> Alissa Cooper has entered the following ballot position for
> draft-ietf-dnsop-negative-trust-anchors-10: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-negative-trust-anchors/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> = Sec 2 =
>
> "Technical personnel trained in the operation of DNS servers MUST
>    confirm that a failure is due to misconfiguration"
>
> s/MUST/must/ - seems odd to put a normative requirement on people to do
> something in people land

Fair 'nuff. We had some discussions on this, but there wasn't really
any strong consensus.
I've made the edit and posted in Github -
https://github.com/wkumari/draft-livingood-dnsop-negative-trust-anchors


>
> = Sec 4 =
>
> "The lifetime MUST NOT exceed a week. "
>
> Would be good to provide the motivation for where this number comes from.

This number comes from Evan.... :-)

Less flippantly, it is in this email:
https://www.ietf.org/mail-archive/web/dnsop/current/msg13004.html  I
don't think that we have a really good motivation for a week, other
than that is feels sort of like a good, human scale timeframe to
recheck on things. We really want there to be a limit on the lifetime,
a week felt right... but, I still like "because Evan said so..."

Are you OK with leaving it unmotivated[0], because there isn't really
a good motivation?

W
[0]: :-)






-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf

v2.23.0 | Report a Bug | By Email