IETF Logo Mail Archive

Re: Fwd: WGLC: draft-ietf-appsawg-http-forwarded-02.txt - section 6 ABNF

Amos Jeffries <squid3@treenet.co.nz> Wed, 02 May 2012 02:38 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD38C21E8099 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 1 May 2012 19:38:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.038
X-Spam-Level:
X-Spam-Status: No, score=-10.038 tagged_above=-999 required=5 tests=[AWL=0.561, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zZOgwhK3jrge for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 1 May 2012 19:38:29 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 5900E21E8011 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 1 May 2012 19:38:29 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.69) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1SPPSI-00082d-LQ for ietf-http-wg-dist@listhub.w3.org; Wed, 02 May 2012 02:38:14 +0000
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.69) (envelope-from <squid3@treenet.co.nz>) id 1SPPSA-00081F-0V for ietf-http-wg@listhub.w3.org; Wed, 02 May 2012 02:38:06 +0000
Received: from ip-58-28-153-233.static-xdsl.xnet.co.nz ([58.28.153.233] helo=treenet.co.nz) by lisa.w3.org with esmtp (Exim 4.72) (envelope-from <squid3@treenet.co.nz>) id 1SPPS6-0000GT-GQ for ietf-http-wg@w3.org; Wed, 02 May 2012 02:38:04 +0000
Received: by treenet.co.nz (Postfix, from userid 33) id 70FE7E6EBA; Wed, 2 May 2012 14:37:35 +1200 (NZST)
To: ietf-http-wg@w3.org
X-PHP-Originating-Script: 0:main.inc
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Date: Wed, 02 May 2012 14:37:32 +1200
From: Amos Jeffries <squid3@treenet.co.nz>
In-Reply-To: <0A15D230-F8D2-498F-894B-86A3C987C456@mnot.net>
References: <4FA02AEA.1080407@isode.com> <0A15D230-F8D2-498F-894B-86A3C987C456@mnot.net>
Message-ID: <a0965cda0c94e6f10a51f837d14a444a@treenet.co.nz>
X-Sender: squid3@treenet.co.nz
User-Agent: Roundcube Webmail/0.7.2
Received-SPF: pass client-ip=58.28.153.233; envelope-from=squid3@treenet.co.nz; helo=treenet.co.nz
X-W3C-Hub-Spam-Status: No, score=-1.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001
X-W3C-Scan-Sig: lisa.w3.org 1SPPS6-0000GT-GQ 50d915edb4975d634695b16d4a0dea8c
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Fwd: WGLC: draft-ietf-appsawg-http-forwarded-02.txt - section 6 ABNF
Archived-At: <http://www.w3.org/mid/a0965cda0c94e6f10a51f837d14a444a@treenet.co.nz>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/13508
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Resent-Message-Id: <E1SPPSI-00082d-LQ@frink.w3.org>
Resent-Date: Wed, 02 May 2012 02:38:14 +0000

On 02.05.2012 11:33, Mark Nottingham wrote:
> HTTP folk,
>
> Please have a look at this document and send along comments,
> especially if you're an intermediary or firewall person, or consume
> the existing X-Forwarded-For header.
>
> <http://tools.ietf.org/html/draft-ietf-appsawg-http-forwarded-02>
>
> Cheers,
>

** section 6 ABNF clash between port and obfport is still a nasty 
thorn.

IMO obfport should start with a mandatory '_'. We have to special-case 
it anyway to parse the ALPHA component might as well bring it inline 
with the rules for obfuscated node and obfuscated identifier ABNF.

Alternatively why bother with obfport at all?

  As I understand/recall it the use-case was to enable for= or by= with 
a visible IP and obfscated/private port.

Would not allowing one of the listed field values be obfuscated 
identifier be better? that way the port can be omitted entirely from the 
for= and whatever detail the hop needs to obfuscate and pass on can be 
encoded inside the obfuscated identifier token.



AYJ

v2.23.0 | Report a Bug | By Email