IETF Logo Mail Archive

Re: Port 80 deprecation

Toerless Eckert <tte@cs.fau.de> Thu, 03 June 2021 11:51 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFA833A08FA for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 3 Jun 2021 04:51:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.65
X-Spam-Level:
X-Spam-Status: No, score=-2.65 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3_Fkn_BjicU8 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 3 Jun 2021 04:51:22 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F38C03A08F9 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 3 Jun 2021 04:51:21 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1loloC-00069U-0S for ietf-http-wg-dist@listhub.w3.org; Thu, 03 Jun 2021 11:46:48 +0000
Resent-Date: Thu, 03 Jun 2021 11:46:44 +0000
Resent-Message-Id: <E1loloC-00069U-0S@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <eckert@i4.informatik.uni-erlangen.de>) id 1lollJ-00064M-RW for ietf-http-wg@listhub.w3.org; Thu, 03 Jun 2021 11:43:54 +0000
Received: from faui40.informatik.uni-erlangen.de ([131.188.34.40]) by mimas.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <eckert@i4.informatik.uni-erlangen.de>) id 1lollG-0001Fa-Rx for ietf-http-wg@w3.org; Thu, 03 Jun 2021 11:43:44 +0000
Received: from faui48e.informatik.uni-erlangen.de (faui48e.informatik.uni-erlangen.de [131.188.34.51]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id E3DB8548017; Thu, 3 Jun 2021 13:43:24 +0200 (CEST)
Received: by faui48e.informatik.uni-erlangen.de (Postfix, from userid 10463) id DC47B4E765F; Thu, 3 Jun 2021 13:43:24 +0200 (CEST)
Date: Thu, 03 Jun 2021 13:43:24 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: Paul Vixie <paul@redbarn.org>
Cc: "Soni L." <fakedme+http@gmail.com>, ietf-http-wg@w3.org
Message-ID: <20210603114324.GE3909@faui48e.informatik.uni-erlangen.de>
References: <41fb81f5-4978-f8da-d0de-7af26cd20e74@gmail.com> <em31279999-b222-49d5-8243-8ec47f667f6e@bombadil> <20210603021542.wjwkk7kq4axoterj@family.redbarn.org> <6fb42e70-2e00-f978-fd59-88ce669e1a91@gmail.com> <20210603040515.qqigadhzrzdbozxu@family.redbarn.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20210603040515.qqigadhzrzdbozxu@family.redbarn.org>
User-Agent: Mutt/1.10.1 (2018-07-13)
Received-SPF: pass client-ip=131.188.34.40; envelope-from=eckert@i4.informatik.uni-erlangen.de; helo=faui40.informatik.uni-erlangen.de
X-W3C-Hub-Spam-Status: No, score=-6.0
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1lollG-0001Fa-Rx 94867230741ee2a536cb5df2954b0bae
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Port 80 deprecation
Archived-At: <https://www.w3.org/mid/20210603114324.GE3909@faui48e.informatik.uni-erlangen.de>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/38846
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Which RFC that is updating RFC8446 is providing null crypto ?

On Thu, Jun 03, 2021 at 04:05:15AM +0000, Paul Vixie wrote:
> On Wed, Jun 02, 2021 at 11:54:55PM -0300, Soni L. wrote:
> > On 2021-06-02 11:15 p.m., Paul Vixie wrote:
> > > TCP/80 will remain in use for vm-internal and hypervisor-scale API's
> > > for much longer than 50 years. it's nice that we have a null-crypto
> > > option on TCP/443 now, but negotiating that across shared silicon when
> > > the endpoints all share a von neumann domain is complexity we would
> > > never be grateful for. it may also have a long life on disconnected
> > > LANs.
> >
> > Have you heard of asymmetric PAKE (TLS-SRP)? It's kinda, perfect for LAN
> > (and by extension VM-internal/hypervisor-scale). Would be great to
> > replace TCP/80 with PAKEs on TCP/443 and UDP/443.
> 
> forgive me for referring to it informally as "a null-crypto option on
> TCP/443" above. but yes, i know about that.
> 
> > There are definitely enough paths for the deprecation of TCP/80. We just
> > have to use them. Less error prone than DIY CA and doesn't involve
> > configuring null-crypto.
> 
> non-upgradable devices will never go out of style. this installed base is
> not subject to deprecation pressure. industrial control systems are far less
> tractible than web browsers.
> 
> the analogue to this is IPv4. at some point the IETF said, everybody should
> switch to IPv6, and to facilitate that, there will be no more protocol
> enhancement actions to IPv4. if you want to innovate, do it in IPv6.
> 
> we could say that about TCP/80. but we won't be taken seriously if use the
> word "deprecate".
> 
> -- 
> Paul Vixie

v2.23.0 | Report a Bug | By Email