[dnsext] resolving IESG comments on draft-ietf-dnsext-dnssec-bis-updates
Samuel Weiler <weiler@watson.org> Tue, 10 July 2012 13:20 UTC
Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 855F021F86CA; Tue, 10 Jul 2012 06:20:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1341926416; bh=VnOdDCFLBxTBg1LIZF/OJLZNU3NU+58hJYjZZDUhep8=; h=Date:From:To:Message-ID:MIME-Version:Subject:List-Id: List-Unsubscribe:List-Archive:List-Post:List-Help:List-Subscribe: Content-Transfer-Encoding:Content-Type:Sender; b=Xl4/Mk8rU/5EwCqB6wEvXupP/r4G9dRfCi9YKiJe+cr2XJMPcc+E3mWSP6UpNZuNZ 6Hi+F/6/Tej0WmngLsjnwkvMsXEa3WMgMUjhLkEcwXSBOKOLHNkGGrF6BMhtKkQYn9 KI7WUgAsGAjLs/rXgNSST8cx4TPbPLF7+zmLqr+8=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 600EE21F86CA for <dnsext@ietfa.amsl.com>; Tue, 10 Jul 2012 06:20:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VbjRby6JpbyY for <dnsext@ietfa.amsl.com>; Tue, 10 Jul 2012 06:20:13 -0700 (PDT)
Received: from fledge.watson.org (fledge.watson.org [65.122.17.41]) by ietfa.amsl.com (Postfix) with ESMTP id 29DF421F86C6 for <dnsext@ietf.org>; Tue, 10 Jul 2012 06:20:13 -0700 (PDT)
Received: from fledge.watson.org (localhost.watson.org [127.0.0.1]) by fledge.watson.org (8.14.5/8.14.5) with ESMTP id q6ADKeNC010600 for <dnsext@ietf.org>; Tue, 10 Jul 2012 09:20:40 -0400 (EDT) (envelope-from weiler@watson.org)
Received: from localhost (weiler@localhost) by fledge.watson.org (8.14.5/8.14.5/Submit) with ESMTP id q6ADKeee010596 for <dnsext@ietf.org>; Tue, 10 Jul 2012 09:20:40 -0400 (EDT) (envelope-from weiler@watson.org)
X-Authentication-Warning: fledge.watson.org: weiler owned process doing -bs
Date: Tue, 10 Jul 2012 09:20:40 -0400
From: Samuel Weiler <weiler@watson.org>
To: dnsext@ietf.org
Message-ID: <alpine.BSF.2.00.1207100827380.30040@fledge.watson.org>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.3 (fledge.watson.org [127.0.0.1]); Tue, 10 Jul 2012 09:20:40 -0400 (EDT)
Subject: [dnsext] resolving IESG comments on draft-ietf-dnsext-dnssec-bis-updates
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org
I've been churning through the IESG telechat comments and single discuss on draft-ietf-dnsext-dnssec-bis-updates. I have two questions for the WG, and I want to report on several textual changes that I plan to adopt, inspired by the IESG's comments. Q1: (from Stephen Farrell) > During the "no answer" mega-discussion on the DANE list, [1] I > seem to recall this comment was made more than once: "you're > seeing all this because you're maybe the first new > application that really needs DNSSEC," or words to that > effect. Should any of that discussion be reflected in this > document? (I assume its not already there for timing reasons > if nothing else.) > > [1] http://www.ietf.org/mail-archive/web/dane/current/msg04845.html Q2: There's been another call to explain why section 3.1 says a validator MUST implement a BAD cache. If nothing better comes up, I plan to just cite http://www.potaroo.net/ispcol/2010-02/rollover.html Is there anything better? Or is there a short summary we can just copy into this doc? And the changes I've made in my working copy of the draft. > -- 2.1 -- > signal that a zone MAY be using NSEC3, rather than NSEC. > > This MAY and the one in the following paragraph are misused: they should not > be 2119 terms. Describing what a zone "may be using" is simply a descriptive > phrase, not anything normative. Actually, I would say "might be using". Done. > 1) Any reason you can't just refer to DNSSECbis as DNSSEC? I guess does the > outside world know DNSSECbis isn't DNSSEC? This is an artifact of the ages. We started this doc just after 4034 et. al. were published, and the WG still referred to them as DNSSECbis. Given today's usage, we should probably make the change. > 2) General: r/RFCXXXX/[RFCXXXX] throughout except for the abstract. A couple > of times I thought the RFC references needed to be included in [] so it's > probably better to just do it everywhere. You also need to add [RFC2308] as > a reference. Added the 2308 reference. I'll leave the rest to the rfc editor. > 3) s1 paragraph two: RFC 6410 got rid of Draft Standard so either > r/Draft/Internet or r/from Proposed Standard to Draft Standard/along the > Internet Standards track. Or something like that. Done. > 5) s2, s2.1, s2.2: Could you replace the three instances of "should {also} > be" with "are"? If the WG considers them part of the core, then aren't they? > It also avoids the whole question about whether it ought to be SHOULD (not > that I'm asking to change that). Sure. I used "are now" and "is now". > 9) s5.11: could you just strike "note that" Sure. How about "This requirement applies to servers, not validators."? Lastly, there is one open Discuss on the document, inspired by a GenART review. Andrew Sullivan replied to the GenART review on the IETF list. I'm waiting for a response from Russ Housley, and I'm hoping we can resolve that without more textual changes. Feel free to comment on that thread separately. -- Sam _______________________________________________ dnsext mailing list dnsext@ietf.org https://www.ietf.org/mailman/listinfo/dnsext
- [dnsext] resolving IESG comments on draft-ietf-dn… Samuel Weiler
- Re: [dnsext] resolving IESG comments on draft-iet… Paul Hoffman
- Re: [dnsext] resolving IESG comments on draft-iet… Warren Kumari
- Re: [dnsext] resolving IESG comments on draft-iet… Patrik Fältström
- Re: [dnsext] resolving IESG comments on draft-iet… Andrew Sullivan
- Re: [dnsext] resolving IESG comments on draft-iet… Paul Hoffman