[DNSOP] Re: [Ext] Re: [dnsext] [Technical Errata Reported] RFC4035 (8037)

Paul Hoffman <paul.hoffman@icann.org> Fri, 02 August 2024 15:38 UTC

Return-Path: <paul.hoffman@icann.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A0B7C14F681; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YOQgIyuQTJ2e; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
Received: from ppa3.lax.icann.org (ppa3.lax.icann.org [192.0.33.78]) by ietfa.amsl.com (Postfix) with ESMTP id 2E813C14F610; Fri, 2 Aug 2024 08:38:18 -0700 (PDT)
Received: from MBX112-W2-CO-2.pexch112.icann.org (out.mail.icann.org [64.78.33.6]) by ppa3.lax.icann.org (8.18.1.2/8.18.1.2) with ESMTPS id 472FahBu031759 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 2 Aug 2024 15:36:44 GMT
Received: from MBX112-W2-CO-1.pexch112.icann.org (10.226.41.128) by MBX112-W2-CO-2.pexch112.icann.org (10.226.41.130) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Fri, 2 Aug 2024 08:36:42 -0700
Received: from MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) by MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) with mapi id 15.02.1544.011; Fri, 2 Aug 2024 08:36:42 -0700
From: Paul Hoffman <paul.hoffman@icann.org>
To: Elias Heftrig <elias.heftrig@sit.fraunhofer.de>
Thread-Topic: [Ext] [DNSOP] Re: [dnsext] [Technical Errata Reported] RFC4035 (8037)
Thread-Index: AQHa4fjBKah9NXCPy0qxd+I4UEci77IPniYAgARXBRSAAI3bgIAAD8yAgAACIQA=
Date: Fri, 02 Aug 2024 15:36:42 +0000
Message-ID: <41A9AE95-3BE9-4DD0-B540-B44CF4EC0999@icann.org>
References: <20240718154431.808BD7FA60@rfcpa.rfc-editor.org> <A1D2718C-186F-4D80-A148-C4A9973F78B6@hactrn.net> <51FBDFB8-263C-41D8-9BDF-BD67A26DF998@nist.gov> <b705f274-3e69-4dcd-98b0-023165aee7d3@sit.fraunhofer.de> <B75EDCC4-87AF-4733-A63A-E7A1515BEF9E@nist.gov> <dddfa1d7-fdd4-413f-a2a7-5bda3da5a46c@sit.fraunhofer.de> <A123EBD2-55B3-4EAF-8676-F726FDD377B5@proper.com> <PH0PR11MB49666DF5324D7BC7C13D9EE3A9B32@PH0PR11MB4966.namprd11.prod.outlook.com> <F08021A4-BD7B-43D9-B99A-F7AC8D5190B5@icann.org> <c87fc42f-9e00-493f-b170-b2d14d0efa0d@sit.fraunhofer.de>
In-Reply-To: <c87fc42f-9e00-493f-b170-b2d14d0efa0d@sit.fraunhofer.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.0.32.234]
x-source-routing-agent: True
Content-Type: text/plain; charset="us-ascii"
Content-ID: <789C4FD36E951241A7C5599CA2F6D9C1@pexch112.icann.org>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-08-02_11,2024-08-02_01,2024-05-17_01
Message-ID-Hash: FJJP777ZOA7F3Z2DPGQFFAY66RPQTD7G
X-Message-ID-Hash: FJJP777ZOA7F3Z2DPGQFFAY66RPQTD7G
X-MailFrom: paul.hoffman@icann.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Eric Vyncke (evyncke)" <evyncke=40cisco.com@dmarc.ietf.org>, "Rose, Scott W. (Fed)" <scott.rose@nist.gov>, Rob Austein <sra@hactrn.net>, RFC Editor <rfc-editor@rfc-editor.org>, Rob Austein <sra@isc.org>, "massey@cs.colostate.edu" <massey@cs.colostate.edu>, "ek.ietf@gmail.com" <ek.ietf@gmail.com>, Olafur Gudmundsson <ogud@ogud.com>, "dnsext@ietf.org" <dnsext@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "Schulmann, Haya" <haya.schulmann@sit.fraunhofer.de>, "Vogel, Niklas" <niklas.vogel@sit.fraunhofer.de>, "Waidner, Michael" <michael.waidner@sit.fraunhofer.de>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: [Ext] Re: [dnsext] [Technical Errata Reported] RFC4035 (8037)
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/nc2XpOtXuFrvS7foltb_bLpge18>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

On Aug 2, 2024, at 08:29, Elias Heftrig <elias.heftrig@sit.fraunhofer.de> wrote:
> 

> is the other thread dealing with these errata on dnsop? Mail archive searches for RFC8640 and errata report 8038 were unsuccessful. Would be glad to be pointed to it.

The thread is not dealing with this erratum report (which is not an erratum but a request for update), but it is dealing with the same issue of validator trying all the signatures and thus possibly being DDoSed.

--Paul Hoffman