Re: Ben Campbell's Yes on draft-ietf-httpbis-expect-ct-07: (with COMMENT)
Mark Nottingham <mnot@mnot.net> Wed, 12 September 2018 16:14 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C828130E43 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 12 Sep 2018 09:14:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=PMl1+Ff2; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=b2mz3q4b
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2nUWilhRoGdt for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 12 Sep 2018 09:14:34 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3E04130DF3 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 12 Sep 2018 09:14:33 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1g07kl-00071Q-4U for ietf-http-wg-dist@listhub.w3.org; Wed, 12 Sep 2018 16:12:31 +0000
Resent-Date: Wed, 12 Sep 2018 16:12:31 +0000
Resent-Message-Id: <E1g07kl-00071Q-4U@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mnot@mnot.net>) id 1g07kf-00070P-Ca for ietf-http-wg@listhub.w3.org; Wed, 12 Sep 2018 16:12:25 +0000
Received: from out1-smtp.messagingengine.com ([66.111.4.25]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mnot@mnot.net>) id 1g07kd-0007KN-Er for ietf-http-wg@w3.org; Wed, 12 Sep 2018 16:12:25 +0000
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id 1201121B90; Wed, 12 Sep 2018 12:12:03 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Wed, 12 Sep 2018 12:12:03 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-sender :x-me-sender:x-sasl-enc; s=fm3; bh=EHJAeQFb/OzidzZ7H/MWyXpIEbkDF PFK6TZOAFpqjJM=; b=PMl1+Ff2gMAcTumso3T/TQC7qfCnTwcviA53IWr/LD4fC 8EE2cQ5EQAd+t9kyI4jlMPq8f/PIa5EhTT2+w6TScyNKN/3ocIBrurMSm3plUFWJ q2y1sZlP1R4Z18sCQ0aD1HmQvX8ep7cYetheqQ+IgKio0X5YuODYfbV/0wifp4xh OdHbTqT6N0kyjiSwXvO5ZKBxwnbQyCpjRxjyoD2HauCkikWMD6kpfNl6Y0UUiR45 2jdpLT3QWpRHnSgmA9M6CZw2GGZrYJpCMtKxRJJLTN73xcY7kIWFduF9sV917xPN /uZwBDDFusFs/3Z463e+COFPfX5v/hYhwL0RxbsCQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=EHJAeQ Fb/OzidzZ7H/MWyXpIEbkDFPFK6TZOAFpqjJM=; b=b2mz3q4bDLuqM4NXF3voZR x1h2wZ8zac1+uBjQEb3TIUQi1udWpRt6fSTDwnJ8HYM6I5Luj3tK8VOcpkTYBOaF bC+6qW1UY7QCRs5/BBqwRKn/Bmn6SXDtApVyu64xV9lRoUYmBLoSkfr+Byhsnddq ssu49cV5ri/B1wEgJatwmuXZ6TYQkdIKvMumK7KOQRm5ZI5EUSP6wey/jMY+8Fdc bFprSUft7Wd3/d4k63wK6KIAjKIOHSKwIyUSIOzpgjN2iu56L4wOZCUS3mE7oWWA MpRDm1F2eEFleUzi3cC4G2T4H6BtjQEhAKsQWfkkLx9hO21BXFOkSMkbasslmsBg ==
X-ME-Proxy: <xmx:0TqZW5gitSd6Vi-jJijVhHi8rrYx3-MNAgJUSqS4euX7g05BFfYoPw> <xmx:0TqZW32Sv8zZFxg03MI3uuQBXxSAb6CwFbBNRb45EAk-TmryfiYdIg> <xmx:0TqZW36YEsJybl3nzE4MBh4GRfxOQd7fwVNJLGSca5YIPOTU-fwXCg> <xmx:0TqZW5pLec2Pk2Z8YQUCbae4q1RRwmIddj6YsGV6XYG-dEJPZ98Eaw> <xmx:0TqZW-BWq3zQsNHt573FygfCRQ6tHPgsnv6CsIc4HEUfDoFR9Ya7Eg> <xmx:0zqZW5YpxXlKAggSrlwCBeGYBJStqQ8nmejStwceF3A4ILgdKLXAPQ>
X-ME-Sender: <xms:0TqZW1E0ADJKqD7NOC00r8hFv7FMdpq18tJbXC0U7kxb6A7OHlWD8Q>
Received: from [172.20.2.3] (h194.135.186.173.static.ip.windstream.net [173.186.135.194]) by mail.messagingengine.com (Postfix) with ESMTPA id 6FF0BE455C; Wed, 12 Sep 2018 12:12:00 -0400 (EDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Mark Nottingham <mnot@mnot.net>
In-Reply-To: <054ABDF3-83EF-46B3-ADC2-B9EF6A9D920C@nostrum.com>
Date: Wed, 12 Sep 2018 09:11:58 -0700
Cc: The IESG <iesg@ietf.org>, draft-ietf-httpbis-expect-ct@ietf.org, HTTP Working Group <ietf-http-wg@w3.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <344BD18A-D940-41E3-89C5-C532EA2AE9FD@mnot.net>
References: <153671839811.16757.7575392548000373864.idtracker@ietfa.amsl.com> <A65E3A2C-1F09-4BB0-9D86-2CD9EF4D4219@mnot.net> <054ABDF3-83EF-46B3-ADC2-B9EF6A9D920C@nostrum.com>
To: Ben Campbell <ben@nostrum.com>
X-Mailer: Apple Mail (2.3445.9.1)
X-W3C-Hub-Spam-Status: No, score=-9.7
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1g07kd-0007KN-Er e5ead869dccf4febe92409f95ce89a26
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Ben Campbell's Yes on draft-ietf-httpbis-expect-ct-07: (with COMMENT)
Archived-At: <https://www.w3.org/mid/344BD18A-D940-41E3-89C5-C532EA2AE9FD@mnot.net>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/35904
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
> On 12 Sep 2018, at 9:06 am, Ben Campbell <ben@nostrum.com> wrote: > > Hi Mark, > > Just one comment-question :-) >>> >>> §2.1.3: The guidance for max-age in the security considerations section >>> suggests 30 days is a good value. But the directive is specified in seconds. >>> Does that make sense? Would a 1 second max-age ever be reasonable? Or even 30 >>> days + 1 second? >> >> Pretty much everything in HTTP is done at second granularity; deviating from that would be odd IMO. > > I certainly don’t have all the HTTP uses of time intervals loaded in my head--are time intervals on the order of “1 month” commonly used elsewhere? In that sort of syntax, no. The desired semantic is often something like that, but the syntax is almost invariably integer-number-of-seconds. Cheers, -- Mark Nottingham https://www.mnot.net/
- Ben Campbell's Yes on draft-ietf-httpbis-expect-c… Ben Campbell
- Re: Ben Campbell's Yes on draft-ietf-httpbis-expe… Mark Nottingham
- Re: Ben Campbell's Yes on draft-ietf-httpbis-expe… Mark Nottingham
- Re: Ben Campbell's Yes on draft-ietf-httpbis-expe… Ben Campbell
- Re: Ben Campbell's Yes on draft-ietf-httpbis-expe… Ben Campbell
- Re: Ben Campbell's Yes on draft-ietf-httpbis-expe… Emily Stark