Re: BCP for good TLS practices? (Was: Last Call: <draft-elie-nntp-tls-recommendations-01.txt> (Use of Transport Layer Security (TLS) in the Network News Transfer Protocol (NNTP)) to Proposed Standard

Julien ÉLIE <> Mon, 28 November 2016 21:05 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 9E94D12958D for <>; Mon, 28 Nov 2016 13:05:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.401
X-Spam-Status: No, score=-1.401 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_SORBS_SPAM=0.5] autolearn=no autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id s3wJMkWt-quS for <>; Mon, 28 Nov 2016 13:05:41 -0800 (PST)
Received: from ( []) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 6D356129FBF for <>; Mon, 28 Nov 2016 13:05:39 -0800 (PST)
Received: from macbook-pro-de-julien-elie.home ([]) by mwinf5d02 with ME id DZ5c1u00217Lgi403Z5cPT; Mon, 28 Nov 2016 22:05:37 +0100
X-ME-Helo: macbook-pro-de-julien-elie.home
X-ME-Auth: anVsaWVuLmVsaWU0ODdAd2FuYWRvby5mcg==
X-ME-Date: Mon, 28 Nov 2016 22:05:37 +0100
Subject: Re: BCP for good TLS practices? (Was: Last Call: <draft-elie-nntp-tls-recommendations-01.txt> (Use of Transport Layer Security (TLS) in the Network News Transfer Protocol (NNTP)) to Proposed Standard
To: Stephane Bortzmeyer <>,,
References: <> <>
From: Julien ÉLIE <>
Organization: TrigoFACILE --
Message-ID: <>
Date: Mon, 28 Nov 2016 22:05:36 +0100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.5.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <>
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 28 Nov 2016 21:05:41 -0000

Bonsoir Stéphane,

>> The IESG has received a request from an individual submitter to consider
>> the following document:
>> - 'Use of Transport Layer Security (TLS) in??the??Network??News??Transfer
>>    Protocol (NNTP)'
>>   <draft-elie-nntp-tls-recommendations-01.txt> as Proposed Standard
> I've read draft-elie-nntp-tls-recommendations-01.txt, I agree with its
> general idea with respect to the old RFC 4642 (moving away from
> specific TLS recommendentions to just a reference to established
> generic TLS RFCs, RFC 4642 even mandated RC4!), and I think it is
> ready to be published on the standards track.

Many thanks for having taken time to read the document.

> I still have a question about the fact that it references RFC
> 7525. Since TLS recommandations may change (and certainly will, for
> instance because of the progress of cryptanalysis), wouldn't it be
> better to use the BCP number 195?

Good point.  I'll see with Alexey as AD if that's OK for him to 
reference RFC 7525 as BCP 195 in the document.

> Otherwise, I would drop appendix B. It is useless since we have RFC
> 2804, and it may even be obsolete (are there still countries with
> serious export restrictions on crypto?)

OK to drop Appendix B.

Julien ÉLIE

« – Je me sens un peu rouillé ! C'est sûrement à cause des
     pluies provoquées par Assurancetourix !
   – En attendant c'est nous qui dérouillons ! » (Astérix)