Re: [Ietf-http-auth] Request for review and consensus -- draft-hartman-webauth-phishing
Sam Hartman <hartmans-ietf@mit.edu> Mon, 08 September 2008 18:28 UTC
Return-Path: <hartmans@mit.edu>
X-Original-To: ietf-http-auth@osafoundation.org
Delivered-To: ietf-http-auth@osafoundation.org
Received: from laweleka.osafoundation.org (laweleka.osafoundation.org [204.152.186.98]) by leilani.osafoundation.org (Postfix) with ESMTP id 7E58D80D42 for <ietf-http-auth@osafoundation.org>; Mon, 8 Sep 2008 11:28:50 -0700 (PDT)
Received: from localhost (laweleka.osafoundation.org [127.0.0.1]) by laweleka.osafoundation.org (Postfix) with ESMTP id 2102314221D for <ietf-http-auth@osafoundation.org>; Mon, 8 Sep 2008 11:28:49 -0700 (PDT)
X-Virus-Scanned: by amavisd-new and clamav at osafoundation.org
X-Spam-Score: -1.413
X-Spam-Level:
X-Spam-Status: No, score=-1.413 tagged_above=-50 required=4 tests=[AWL=0.590, BAYES_00=-2.599, SPF_SOFTFAIL=0.596]
Received: from laweleka.osafoundation.org ([127.0.0.1]) by localhost (laweleka.osafoundation.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IMXjowq-LMYz for <ietf-http-auth@osafoundation.org>; Mon, 8 Sep 2008 11:28:42 -0700 (PDT)
Received: from carter-zimmerman.suchdamage.org (carter-zimmerman.suchdamage.org [69.25.196.178]) by laweleka.osafoundation.org (Postfix) with ESMTP id B5C3A14221E for <ietf-http-auth@osafoundation.org>; Mon, 8 Sep 2008 11:28:42 -0700 (PDT)
Received: by carter-zimmerman.suchdamage.org (Postfix, from userid 8042) id 855AD4116; Mon, 8 Sep 2008 14:28:40 -0400 (EDT)
From: Sam Hartman <hartmans-ietf@mit.edu>
To: SM <sm@resistor.net>
Subject: Re: [Ietf-http-auth] Request for review and consensus -- draft-hartman-webauth-phishing
References: <47490048-25ED-403E-96B9-0D385F764292@osafoundation.org> <6.2.5.6.2.20080908104107.02d68650@resistor.net>
Date: Mon, 08 Sep 2008 14:28:40 -0400
In-Reply-To: <6.2.5.6.2.20080908104107.02d68650@resistor.net> (sm@resistor.net's message of "Mon, 08 Sep 2008 10:58:01 -0700")
Message-ID: <tsltzcqxzjb.fsf@mit.edu>
User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/21.4 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Cc: ietf-http-auth@osafoundation.org
X-BeenThere: ietf-http-auth@osafoundation.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-http-auth.osafoundation.org
List-Unsubscribe: <http://lists.osafoundation.org/cgi-bin/mailman/listinfo/ietf-http-auth>, <mailto:ietf-http-auth-request@osafoundation.org?subject=unsubscribe>
List-Archive: <http://lists.osafoundation.org/pipermail/ietf-http-auth>
List-Post: <mailto:ietf-http-auth@osafoundation.org>
List-Help: <mailto:ietf-http-auth-request@osafoundation.org?subject=help>
List-Subscribe: <http://lists.osafoundation.org/cgi-bin/mailman/listinfo/ietf-http-auth>, <mailto:ietf-http-auth-request@osafoundation.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Sep 2008 18:28:50 -0000
>>>>> "SM" == SM <sm@resistor.net> writes: SM> RFC 2606 mentions that an "Informational" specification is SM> published for the general information of the Internet SM> community, and does not represent an Internet community SM> consensus or recommendation. Section 1.1 of the I-D is at SM> odds with that. I suggest either reviewing the intended SM> status of the I-D or changing that paragraph. Can I get you to focus on what we want the ietf consensus to be rather than on how to accomplish that? I agree that we'll need to have a discussion of how to accomplish that. I think it is better to have a discussion of what we're accomplishing though. Can I get you to ignore the intended status, review section 1.1 and the rest of the draft and comment on whether you think that would be a good position for the IETF to take on this issue, and if not, what position the IETF should take? SM> Is this I-D getting into user interface guidelines? If so, SM> it's not standard-track material. No, I believe this ID makes no normative statement about how a user interface should be constructed. It does make statements about what the protocol requires of the user interface at a very abstract level--well within what I've seen from other standards.
- Re: [Ietf-http-auth] Request for review and conse… SM
- Re: [Ietf-http-auth] Request for review and conse… Chris Newman
- Re: [Ietf-http-auth] Request for review and conse… Tom Yu
- Re: [Ietf-http-auth] Request for review and conse… SM
- [Ietf-http-auth] Assumptions about user motivatio… Sam Hartman
- Re: [Ietf-http-auth] Request for review and conse… Tom Yu
- Re: [Ietf-http-auth] Request for review and conse… Sam Hartman
- [Ietf-http-auth] Re: Request for review and conse… Sam Hartman
- Re: [Ietf-http-auth] Request for review and conse… SM
- Re: [Ietf-http-auth] Request for review and conse… Sam Hartman
- Re: [Ietf-http-auth] Request for review and conse… SM
- [Ietf-http-auth] Re: Request for review and conse… Simon Josefsson
- [Ietf-http-auth] [Peter Gutmann] Re: [saag] Reque… Sam Hartman
- Re: [saag] Request for review and consensus -- dr… Peter Gutmann
- [Ietf-http-auth] Request for review and consensus… Lisa Dusseault