IETF Logo Mail Archive

Re: [kitten] Updating IANA krb5 GSSAPI token type registry

Sam Hartman <hartmans-ietf@mit.edu> Wed, 05 March 2014 14:23 UTC

Return-Path: <hartmans@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 341281A020E for <kitten@ietfa.amsl.com>; Wed, 5 Mar 2014 06:23:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.235
X-Spam-Level:
X-Spam-Status: No, score=-1.235 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0QkzsND-JIIC for <kitten@ietfa.amsl.com>; Wed, 5 Mar 2014 06:23:17 -0800 (PST)
Received: from mail.painless-security.com (mail.painless-security.com [23.30.188.241]) by ietfa.amsl.com (Postfix) with ESMTP id E91911A01F6 for <kitten@ietf.org>; Wed, 5 Mar 2014 06:23:15 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail.painless-security.com (Postfix) with ESMTP id 5D7A5206AA; Wed, 5 Mar 2014 09:18:44 -0500 (EST)
Received: from mail.painless-security.com ([127.0.0.1]) by localhost (mail.suchdamage.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rz2KjJmE54Er; Wed, 5 Mar 2014 09:18:42 -0500 (EST)
Received: from carter-zimmerman.suchdamage.org (unknown [130.129.155.158]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "laptop", Issuer "laptop" (not verified)) by mail.painless-security.com (Postfix) with ESMTPS; Wed, 5 Mar 2014 09:18:42 -0500 (EST)
Received: by carter-zimmerman.suchdamage.org (Postfix, from userid 8042) id 0987C83F00; Wed, 5 Mar 2014 09:23:09 -0500 (EST)
From: Sam Hartman <hartmans-ietf@mit.edu>
To: Benjamin Kaduk <kaduk@MIT.EDU>
References: <20130806223553.CD3401A8EC@ld9781.wdf.sap.corp> <29F4D66E-3E8F-4033-8779-8EA158C1B72A@padl.com> <alpine.GSO.1.10.1308062018070.24720@multics.mit.edu> <alpine.GSO.1.10.1309041148130.16692@multics.mit.edu> <alpine.GSO.1.10.1403041135510.1213@multics.mit.edu>
Date: Wed, 05 Mar 2014 09:23:08 -0500
In-Reply-To: <alpine.GSO.1.10.1403041135510.1213@multics.mit.edu> (Benjamin Kaduk's message of "Tue, 4 Mar 2014 11:49:50 -0500 (EST)")
Message-ID: <tslzjl4ohbn.fsf@mit.edu>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Archived-At: http://mailarchive.ietf.org/arch/msg/kitten/VqC-_fKVkL0rmfq0O3hABPeMxd8
Cc: kitten@ietf.org
Subject: Re: [kitten] Updating IANA krb5 GSSAPI token type registry
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Mar 2014 14:23:19 -0000

>>>>> "Benjamin" == Benjamin Kaduk <kaduk@MIT.EDU> writes:


    Benjamin> To me, this seems like a(nother) bug in RFC 7055, but of
    Benjamin> course it is not one that can be reasonably fixed.  I
    Benjamin> guess that the easiest way forward is to publish a quick
    Benjamin> document that reserves 0405 and 0501 noting that they were
    Benjamin> in use before the registry was established.

I do not support reserving the iakerb value in another document.
The right solution there is to finish iakerb and get it published.

my preference is that the CFX context deletion token not be registered.
I don't see any protocol issues that are likely to result if that code
point were re-used.
If the community disagrees, writing a document is the right way forward.

Yes, as expert, I could have done something else.
I just think it would have been the wrong choice.

v2.23.0 | Report a Bug | By Email