IETF Logo Mail Archive

Re: [IPsec] #117: Hash and URL interop

Scott C Moonen <smoonen@us.ibm.com> Wed, 25 November 2009 15:34 UTC

Return-Path: <smoonen@us.ibm.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0EAD13A6863; Wed, 25 Nov 2009 07:34:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.298
X-Spam-Level:
X-Spam-Status: No, score=-4.298 tagged_above=-999 required=5 tests=[AWL=2.300, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WeAhVangz9O7; Wed, 25 Nov 2009 07:34:22 -0800 (PST)
Received: from e4.ny.us.ibm.com (e4.ny.us.ibm.com [32.97.182.144]) by core3.amsl.com (Postfix) with ESMTP id AA8DE3A6829; Wed, 25 Nov 2009 07:34:22 -0800 (PST)
Received: from d01relay01.pok.ibm.com (d01relay01.pok.ibm.com [9.56.227.233]) by e4.ny.us.ibm.com (8.14.3/8.13.1) with ESMTP id nAPFPi3T027927; Wed, 25 Nov 2009 10:25:44 -0500
Received: from d03av05.boulder.ibm.com (d03av05.boulder.ibm.com [9.17.195.85]) by d01relay01.pok.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id nAPFYGtJ108610; Wed, 25 Nov 2009 10:34:16 -0500
Received: from d03av05.boulder.ibm.com (loopback [127.0.0.1]) by d03av05.boulder.ibm.com (8.14.3/8.13.1/NCO v10.0 AVout) with ESMTP id nAPFXgGP002663; Wed, 25 Nov 2009 08:33:42 -0700
Received: from d03nm118.boulder.ibm.com (d03nm118.boulder.ibm.com [9.17.195.144]) by d03av05.boulder.ibm.com (8.14.3/8.13.1/NCO v10.0 AVin) with ESMTP id nAPFXgkj002654; Wed, 25 Nov 2009 08:33:42 -0700
In-Reply-To: <19213.19546.581975.240144@fireball.kivinen.iki.fi>
References: <7F9A6D26EB51614FBF9F81C0DA4CFEC801BDA1213EA9@il-ex01.ad.checkpoint.com> <7F9A6D26EB51614FBF9F81C0DA4CFEC801BDF88DFFE1@il-ex01.ad.checkpoint.com> <p06240863c731d54f3a70@[10.20.30.158]> <EA6311DE-97C3-4633-AAD2-C6C82946D162@checkpoint.com> <19213.13970.105797.850084@fireball.kivinen.iki.fi> <7F9A6D26EB51614FBF9F81C0DA4CFEC801BDF88E016D@il-ex01.ad.checkpoint.com> <19213.19546.581975.240144@fireball.kivinen.iki.fi>
To: Tero Kivinen <kivinen@iki.fi>
MIME-Version: 1.0
X-KeepSent: 064115A9:83CEEF47-85257679:00551253; type=4; name=$KeepSent
X-Mailer: Lotus Notes Release 8.0.2 HF623 January 16, 2009
From: Scott C Moonen <smoonen@us.ibm.com>
X-MIMETrack: S/MIME Sign by Notes Client on Scott C Moonen/Raleigh/IBM(Release 8.0.2 HF623|January 16, 2009) at 11/25/2009 10:32:58 AM, Serialize by Notes Client on Scott C Moonen/Raleigh/IBM(Release 8.0.2 HF623|January 16, 2009) at 11/25/2009 10:32:58 AM, Serialize complete at 11/25/2009 10:32:58 AM, S/MIME Sign failed at 11/25/2009 10:32:58 AM: The cryptographic key was not found, Serialize by Router on D03NM118/03/M/IBM(Release 8.5.1HF41 | October 22, 2009) at 11/25/2009 08:33:41, Serialize complete at 11/25/2009 08:33:41
Message-ID: <OF064115A9.83CEEF47-ON85257679.00551253-85257679.00557AF5@us.ibm.com>
Date: Wed, 25 Nov 2009 10:33:40 -0500
Content-Type: multipart/alternative; boundary="=_alternative 00556AA185257679_="
Cc: IPsecme WG <ipsec@ietf.org>, ipsec-bounces@ietf.org, Yoav Nir <ynir@checkpoint.com>, Paul Hoffman <paul.hoffman@vpnc.org>
Subject: Re: [IPsec] #117: Hash and URL interop
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Nov 2009 15:34:24 -0000

> > The behavior of other URL methods is not currently specified, so
> > such methods SHOULD NOT be used in the absence of a Standards Track
> > document defining them.
> 
> This addition is ok for me, altough I do not think we need to have
> *Standard Track* documents to be able to use, I would just say "in the
> absens of document defining them". I think having information RFC
> telling how to use ftp URLs should be ok, especially as some people
> might be against making such document standard track document.

I agree.

As an aside, I would expect any such document not only to loosely specify 
the behavior of https or ftp URLs (for example), but also to introduce new 
notify types such as HTTPS_CERT_LOOKUP_SUPPORTED and 
FTP_CERT_LOOKUP_SUPPORTED.


Scott Moonen (smoonen@us.ibm.com)
z/OS Communications Server TCP/IP Development
http://www.linkedin.com/in/smoonen



From:
Tero Kivinen <kivinen@iki.fi>
To:
Yaron Sheffer <yaronf@checkpoint.com>
Cc:
IPsecme WG <ipsec@ietf.org>, Yoav Nir <ynir@checkpoint.com>, Paul Hoffman 
<paul.hoffman@vpnc.org>
Date:
11/25/2009 10:25 AM
Subject:
Re: [IPsec] #117: Hash and URL interop



Yaron Sheffer writes:
> Can you live with:
> 
> Implementations MUST support HTTP.

This is already in the RFC4306.

> The behavior of other URL methods is not currently specified, so
> such methods SHOULD NOT be used in the absence of a Standards Track
> document defining them.

This addition is ok for me, altough I do not think we need to have
*Standard Track* documents to be able to use, I would just say "in the
absens of document defining them". I think having information RFC
telling how to use ftp URLs should be ok, especially as some people
might be against making such document standard track document.
-- 
kivinen@iki.fi
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email