IETF Logo Mail Archive

Re: [hybi] Moving to a CONNECT-based handshake

Maciej Stachowiak <mjs@apple.com> Wed, 01 December 2010 11:38 UTC

Return-Path: <mjs@apple.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id ADC113A6C65 for <hybi@core3.amsl.com>; Wed, 1 Dec 2010 03:38:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -107.166
X-Spam-Level:
X-Spam-Status: No, score=-107.166 tagged_above=-999 required=5 tests=[AWL=-0.567, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vj279UCtefIG for <hybi@core3.amsl.com>; Wed, 1 Dec 2010 03:38:24 -0800 (PST)
Received: from mail-out4.apple.com (mail-out.apple.com [17.254.13.23]) by core3.amsl.com (Postfix) with ESMTP id D57DC3A6BC0 for <hybi@ietf.org>; Wed, 1 Dec 2010 03:38:23 -0800 (PST)
Received: from relay13.apple.com (relay13.apple.com [17.128.113.29]) by mail-out4.apple.com (Postfix) with ESMTP id 51E2DC0FC2A6 for <hybi@ietf.org>; Wed, 1 Dec 2010 03:39:37 -0800 (PST)
X-AuditID: 1180711d-b7b82ae0000060a0-4d-4cf633f964e7
Received: from elliott.apple.com (elliott.apple.com [17.151.62.13]) by relay13.apple.com (Apple SCV relay) with SMTP id 93.C6.24736.9F336FC4; Wed, 1 Dec 2010 03:39:37 -0800 (PST)
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; charset="us-ascii"
Received: from [17.72.146.92] by elliott.apple.com (Sun Java(tm) System Messaging Server 6.3-7.04 (built Sep 26 2008; 32bit)) with ESMTPSA id <0LCQ003O0Z1SPL00@elliott.apple.com> for hybi@ietf.org; Wed, 01 Dec 2010 03:39:37 -0800 (PST)
From: Maciej Stachowiak <mjs@apple.com>
In-reply-to: <4CF62A84.60203@gmx.de>
Date: Wed, 01 Dec 2010 03:39:27 -0800
Message-id: <4DE54F88-D26A-4DCC-8CC5-5E0F6E8A3E43@apple.com>
References: <op.vmzqkhszidj3kv@simon-pieterss-macbook.local> <4CF52558.9010100@gmx.de> <4CF529FF.9080708@opera.com> <BB31C4AB95A70042A256109D4619912605790150@XCH117CNC.rim.net> <AANLkTimzTvtho0m9HZSe6exgSwZxbCnxtmeJd2-G0aSK@mail.gmail.com> <BB31C4AB95A70042A256109D4619912605790178@XCH117CNC.rim.net> <BB31C4AB95A70042A256109D4619912605790190@XCH117CNC.rim.net> <AANLkTimQJz22RtoVnB16C8Mi4C8=QKB946wSR9BRsP85@mail.gmail.com> <AANLkTi=BPFKVfj1CQQ4pk9-M_-9=ftQQPerfAFZtV8K7@mail.gmail.com> <0FB073DB-9435-4DD6-8E7C-CD04DE75A104@webex.co> <AANLkTi=u_1j8tHUaL5V_xmuCWvxZUw3a=Yof5ySjHemj@mail.gmail.com> <AANLkTikG0Y1GfuqBAsk=2U2k4FHN7LuztKOwWJ9bLnO9@mail.gmail.com> <91FD4B44-386D-4452-AAE0-2076D82D4781@apple.com> <AANLkTi=dEkig+fKO+OJKhz2TkLFeGfFCu=6oGULA4jGw@mail.gmail.com> <CCA24994-EE8C-4880-A571-297B57A05FEA@apple.com> <4CF62A84.60203@gmx.de>
To: Julian Reschke <julian.reschke@gmx.de>
X-Mailer: Apple Mail (2.1082)
X-Brightmail-Tracker: AAAAAA==
Cc: Joe Hildebrand <Joe.Hildebrand@webex.com>, hybi@ietf.org
Subject: Re: [hybi] Moving to a CONNECT-based handshake
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Dec 2010 11:38:27 -0000

On Dec 1, 2010, at 2:59 AM, Julian Reschke wrote:

> On 01.12.2010 11:40, Maciej Stachowiak wrote:
>> ...
>> The longer we wait, the more chance that -00 will become the de facto standard.
>> ...
> 
> As far as I can tell, we have a draft that is stronger than -00, although maybe not perfect. Please use it.

Do you mean -03 or Adam's handshake draft? -03 has the same handshake as -00 with the same security flaws. Adam's draft is indeed stronger, but it would be more polite to wait for WG consensus and not just implementor consensus on it, if possible.

Regards,
Maciej

v2.23.0 | Report a Bug | By Email