Re: [DNSOP] Working Group Last Call for draft-ietf-dnsop-nsec-ttl
Michael StJohns <msj@nthpermutation.com> Fri, 29 January 2021 17:31 UTC
Return-Path: <msj@nthpermutation.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAF3E3A11B2 for <dnsop@ietfa.amsl.com>; Fri, 29 Jan 2021 09:31:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=nthpermutation-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uyOHFBhYIp3z for <dnsop@ietfa.amsl.com>; Fri, 29 Jan 2021 09:31:27 -0800 (PST)
Received: from mail-qk1-x72e.google.com (mail-qk1-x72e.google.com [IPv6:2607:f8b0:4864:20::72e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 170853A11A9 for <dnsop@ietf.org>; Fri, 29 Jan 2021 09:31:26 -0800 (PST)
Received: by mail-qk1-x72e.google.com with SMTP id v126so9445037qkd.11 for <dnsop@ietf.org>; Fri, 29 Jan 2021 09:31:26 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nthpermutation-com.20150623.gappssmtp.com; s=20150623; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=botUnWj8yuHJpyItGO1HeM16uBpfn/CgQo+Va6252q0=; b=Ry9/GxYpiMLLhTTYxPqDz1fbp5hh5FCCZwV3ap5EdMvrd6TLC27olmiIZV3JgPicOx Z60Y5cvxP6OnpZc8mAuqQMPs02k4pBGt+hoGEOueozJfQ6U/43tMGRWb/bRo+mnszMpw BbuHuD2Kkm/dQ60ybpjVlGafxoHXN391AH0jj3WLgqM8tPvcukOVJ/JYTLTfPWed/I+m dkc/+K+cmCfXCYqq4lINqepLGHX9T+AdmtfQfx6czMl193thPsQRc3rIcz2nxVQsiC+z FILesDmch1SW3gZsi+e6orWKlzSD68lwSh5CV7j2cq41rnewIZpQDhiN0nQI4bmYETJP gP5Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=botUnWj8yuHJpyItGO1HeM16uBpfn/CgQo+Va6252q0=; b=XCzPk1QwrSpjNpdO2yoySUYRbhPKzHiyfUhgZhlqMSBHg5IVhDoBkOA9Jcl6Lh1F3B nWcDhEWsnd7sfJqaSoFFwG7fF6iiAWhsIh5PwdoNFBX0LruSwr6Xhy6zf0lNnLaEzW0r 00Ry1H1PY0epeZjsnS1P73OUTvzsAQS6li5UEBpEwJN9DcuxejbHGf0FaDZ8G+8e+7UG sJQMtWgpl/Dw3gxFx1H1zoD9R5tnQ1qjNuNZq+TrccESrllEEg6rpxbrc98R9okdB7m8 bYTGrTcUE8PNLc6JX6m3yrn7wIcxsFjbtywJYqGD0Gpsz3ZKtmdlI79ixINDo7Da9C2I VxyQ==
X-Gm-Message-State: AOAM53257fG4r5LK7xF3rqsk2iZNDySZWztH2clK4+8nc8k6ifWGx1oa vPtz1GTqzBrhGY9915b9z7mPxat/Pgmdv1LV
X-Google-Smtp-Source: ABdhPJyXs3hyaYbe6n0/1QZqFPFbH0axMq/w7xkZdi7cQiloB6R2djbKQYS4qaUsoEiQdm4bfCpUqA==
X-Received: by 2002:a37:6697:: with SMTP id a145mr4946704qkc.255.1611941485541; Fri, 29 Jan 2021 09:31:25 -0800 (PST)
Received: from [192.168.1.23] ([138.88.204.18]) by smtp.gmail.com with ESMTPSA id m2sm6541644qke.117.2021.01.29.09.31.22 for <dnsop@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 29 Jan 2021 09:31:23 -0800 (PST)
To: dnsop@ietf.org
References: <CADyWQ+En0_=LzynpgodOyPan0WD5HdtdqVdU6zw39-g_SCNL6A@mail.gmail.com>
From: Michael StJohns <msj@nthpermutation.com>
Message-ID: <edf948c2-f093-9850-805a-5ac05b27a2bd@nthpermutation.com>
Date: Fri, 29 Jan 2021 12:31:22 -0500
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.6.1
MIME-Version: 1.0
In-Reply-To: <CADyWQ+En0_=LzynpgodOyPan0WD5HdtdqVdU6zw39-g_SCNL6A@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------E6E141C0EE81E31AFFCACD17"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/vaL2qc_-WfL67uhzlKmZPoErsKU>
Subject: Re: [DNSOP] Working Group Last Call for draft-ietf-dnsop-nsec-ttl
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Jan 2021 17:31:29 -0000
On 1/29/2021 10:22 AM, Tim Wicinski wrote: > > All > > After a quick check with the other chairs, we're ready to move this > draft forward. > > This starts a Working Group Last Call for draft-ietf-dnsop-nsec-ttl > > Current versions of the draft is available here: > https://datatracker.ietf.org/doc/draft-ietf-dnsop-nsec-ttl/ > <https://datatracker.ietf.org/doc/draft-ietf-dnsop-nsec-ttl/> > > The Current Intended Status of this document is: Proposed Standard > as it will update 4034, 4035, and 5155. > > Please review the draft and offer relevant comments. > If this does not seem appropriate please speak out. > If someone feels the document is *not* ready for publication, please > speak out with your reasons. > > This starts a two week Working Group Last Call process, and ends on: > 12 February 2021 > > thanks > tim > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop Hi Tim et al - Sorry - I completely missed this document earlier. I can't support this as Standards track even though it purports to update standards as it doesn't actually specify an implementable protocol. Basically, this is dependent upon humans doing the right thing, rather than specifying behavior of the protocol. For each of these, I'd recommend specifying what a client does in each of the cases, rather than weasel wording the SHOULD with respect to the zone contents to turn this into an implementable protocol. E.g. for each of these clauses add something similar to "The client SHOULD/MUST reduce the effective TTL for the received NSEC RR to the lesser of the TTL of the current SOA record, the TTL of the SOA, and the TTL of the NSEC RR record and MUST discard the NSEC RR when that effective TTL expires." So - not ready for last call. Mike
- [DNSOP] Working Group Last Call for draft-ietf-dn… Tim Wicinski
- Re: [DNSOP] Working Group Last Call for draft-iet… Michael StJohns
- Re: [DNSOP] Working Group Last Call for draft-iet… Peter van Dijk
- Re: [DNSOP] [Ext] Working Group Last Call for dra… Paul Hoffman
- Re: [DNSOP] [Ext] Working Group Last Call for dra… Michael StJohns
- Re: [DNSOP] [Ext] Working Group Last Call for dra… Paul Hoffman
- Re: [DNSOP] [Ext] Working Group Last Call for dra… Wessels, Duane
- Re: [DNSOP] [Ext] Working Group Last Call for dra… Matthijs Mekking
- Re: [DNSOP] Working Group Last Call for draft-iet… Tim Wicinski