Zaheduzzaman Sarker's No Objection on draft-ietf-httpbis-semantics-16: (with COMMENT)
Zaheduzzaman Sarker via Datatracker <noreply@ietf.org> Wed, 16 June 2021 19:33 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DD263A2406 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 16 Jun 2021 12:33:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.649
X-Spam-Level:
X-Spam-Status: No, score=-2.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ofsWh3E8SrzM for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 16 Jun 2021 12:33:31 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF4563A23F0 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 16 Jun 2021 12:33:30 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1ltbEC-0000ds-3W for ietf-http-wg-dist@listhub.w3.org; Wed, 16 Jun 2021 19:29:33 +0000
Resent-Date: Wed, 16 Jun 2021 19:29:32 +0000
Resent-Message-Id: <E1ltbEC-0000ds-3W@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <noreply@ietf.org>) id 1ltbDk-0000ah-LR for ietf-http-wg@listhub.w3.org; Wed, 16 Jun 2021 19:29:07 +0000
Received: from mail.ietf.org ([4.31.198.44]) by mimas.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <noreply@ietf.org>) id 1ltbDZ-0003kX-Vh for ietf-http-wg@w3.org; Wed, 16 Jun 2021 19:28:58 +0000
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 353873A23DE; Wed, 16 Jun 2021 12:28:42 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Zaheduzzaman Sarker via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-httpbis-semantics@ietf.org, httpbis-chairs@ietf.org, ietf-http-wg@w3.org, tpauly@apple.com, tpauly@apple.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.32.0
Auto-Submitted: auto-generated
Reply-To: Zaheduzzaman Sarker <Zaheduzzaman.Sarker@ericsson.com>
Message-ID: <162387172218.7090.5034644757535000808@ietfa.amsl.com>
Date: Wed, 16 Jun 2021 12:28:42 -0700
Received-SPF: pass client-ip=4.31.198.44; envelope-from=noreply@ietf.org; helo=mail.ietf.org
X-W3C-Hub-Spam-Status: No, score=-6.2
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1ltbDZ-0003kX-Vh 21f7dfc77874079f00b151d4a300681f
X-Original-To: ietf-http-wg@w3.org
Subject: Zaheduzzaman Sarker's No Objection on draft-ietf-httpbis-semantics-16: (with COMMENT)
Archived-At: <https://www.w3.org/mid/162387172218.7090.5034644757535000808@ietfa.amsl.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/38899
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Zaheduzzaman Sarker has entered the following ballot position for draft-ietf-httpbis-semantics-16: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-httpbis-semantics/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Big thanks to editors and contributors of the this document. I found this document to be very well written with right level of description which surely makes the developer's life a bit easier, specially having all the important considerations and recommendations in one place. I have following observations - * Server push is mentioned in section 1.2. I was expecting some descriptions in this document on how the server push is realized specially using the methods defined in this document. * Section 4.2.2: it says- "The origin server for an "https" URI is identified by the authority component, which includes a host identifier and optional port number ([RFC3986], Section 3.2.2). If the port subcomponent is empty or not given, TCP port 443 (the reserved port for HTTP over TLS) is the default. " how does this default work with HTTP/3 which used UDP port 443? * It felt like security consideration section missing considerations for the TRACE method. The section 9.3.8 says - "A client MUST NOT generate fields in a TRACE request containing sensitive data" , I am just wondering is that good enough warning. * I support Roman's comment about the strength of the recommendation based on the use of the verb “ought”. This might be a bit more confusing to the readers with non-native English language background. I would suggest to use more recommend or should or must in the entire document instead of "ought to". * Lars provided very good input on editorial fixes/nits, I would skip mine and hope his will be addressed by the editors.
- Zaheduzzaman Sarker's No Objection on draft-ietf-… Zaheduzzaman Sarker via Datatracker