IETF Logo Mail Archive

Re: [openpgp] [dane] The DANE draft

"Jiankang Yao" <yaojk@cnnic.cn> Thu, 06 August 2015 08:39 UTC

Return-Path: <yaojk@cnnic.cn>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1FBBA1ACE84; Thu, 6 Aug 2015 01:39:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.611
X-Spam-Level:
X-Spam-Status: No, score=-2.611 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QdCMkBHpcBh2; Thu, 6 Aug 2015 01:39:25 -0700 (PDT)
Received: from cnnic.cn (smtp13.cnnic.cn [218.241.118.13]) by ietfa.amsl.com (Postfix) with ESMTP id 1BD9F1ACEA2; Thu, 6 Aug 2015 01:39:23 -0700 (PDT)
Received: from healthyao-THINK (unknown [218.241.103.53]) by ocmail02.zx.nicx.cn (Coremail) with SMTP id AQAAf0ApMZU5HcNV0rCyBw--.7527S2; Thu, 06 Aug 2015 16:39:21 +0800 (CST)
Date: Thu, 06 Aug 2015 16:39:20 +0800
From: Jiankang Yao <yaojk@cnnic.cn>
To: Paul Wouters <paul@nohats.ca>, dane <dane@ietf.org>
References: <CAMm+LwhYdBLXM8Td8q8SCnzgwywRgMx3wNKeS_Q0JSN4Lh7rZQ@mail.gmail.com> <87bnf1hair.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1507250832510.854@bofh.nohats.ca> <87bnem2xjq.fsf@alice.fifthhorseman.net> <alpine.LFD.2.11.1508050331340.1451@bofh.nohats.ca> <55C1F35A.5070904@cs.tcd.ie> <B7419740-25C9-4F8D-85AE-FC6E11BCC038@vpnc.org> <55C22D64.9080507@strotmann.de>, <alpine.LFD.2.11.1508060417450.16408@bofh.nohats.ca>
X-Priority: 3
X-Has-Attach: no
X-Mailer: Foxmail 7.0.1.92[cn]
Mime-Version: 1.0
Message-ID: <20150806163914546863148@cnnic.cn>
Content-Type: multipart/alternative; boundary="----=_001_NextPart602551245372_=----"
X-CM-TRANSID: AQAAf0ApMZU5HcNV0rCyBw--.7527S2
X-Coremail-Antispam: 1UD129KBjvdXoWrZryUGFWkKFyrGFW8WF43GFg_yoW3WFc_Wa y8Wws7Ww4Yyrs7Kws3G3Wjkr48XayqgrWqy348Xr92vry3AFn7Za4vvFy7uF15JF4qv3sr KryfGw4IgrWagjkaLaAFLSUrUUUUUb8apTn2vfkv8UJUUUU8Yxn0WfASr-VFAUDa7-sFnT 9fnUUIcSsGvfJTRUUUbTAYjsxI4VWxJwAYFVCjjxCrM7AC8VAFwI0_Jr0_Gr1l1xkIjI8I 6I8E6xAIw20EY4v20xvaj40_Wr0E3s1l1IIY67AEw4v_Jr0_Jr4l8cAvFVAK0II2c7xJM2 8CjxkF64kEwVA0rcxSw2x7M28EF7xvwVC0I7IYx2IY67AKxVW8JVW5JwA2z4x0Y4vE2Ix0 cI8IcVCY1x0267AKxVW8JVWxJwA2z4x0Y4vEx4A2jsIE14v26rxl6s0DM28EF7xvwVC2z2 80aVCY1x0267AKxVW0oVCq3wAS0I0E0xvYzxvE52x082IY62kv0487Mc02F40E42I26xC2 a48xMcIj6xIIjxv20xvE14v26r1j6r18McIj6I8E87Iv67AKxVW8JVWxJwAm72CE4IkC6x 0Yz7v_Jr0_Gr1lF7xvr2IYc2Ij64vIr41lFcxC0VAYjxAxZF0Ew4CEw7xC0wACY4xI67k0 4243AVC20s07MxkIecxEwVAFwVW8ZwCF04k20xvY0x0EwIxGrwCFx2IqxVCFs4IE7xkEbV WUJVW8JwC20s026c02F40E14v26r106r1rMI8I3I0E7480Y4vE14v26r106r1rMI8E67AF 67kF1VAFwI0_Jrv_JF1lIxkGc2Ij64vIr41lIxAIcVC0I7IYx2IY67AKxVWUJVWUCwCI42 IY6xIIjxv20xvEc7CjxVAFwI0_Jr0_Gr1lIxAIcVCF04k26cxKx2IYs7xG6rW3Jr0E3s1l IxAIcVC2z280aVAFwI0_Gr0_Cr1lIxAIcVC2z280aVCY1x0267AKxVW8JVW8Jr1l6VACY4 xI67k04243AbIYCTnIWIevJa73UjIFyTuYvjxUxOJ5UUUUU
X-CM-SenderInfo: x1dryyw6fq0xffof0/
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/XuqHiemC8m4xuhry24YmxnCp_Wo>
X-Mailman-Approved-At: Thu, 06 Aug 2015 08:27:28 -0700
Cc: IETF OpenPGP <openpgp@ietf.org>
Subject: Re: [openpgp] [dane] The DANE draft
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: yaojk <yaojk@cnnic.cn>
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Aug 2015 08:39:27 -0000


From: Paul Wouters
Date: 2015-08-06 16:23
To: dane WG list
CC: IETF OpenPGP
Subject: Re: [dane] [openpgp] The DANE draft
On Wed, 5 Aug 2015, Carsten Strotmann wrote:

>> for OPENPGPKEY/SMIMECERT zones, operators could (maybe SHOULD) use
>> NSEC/NSEC3 "narrow" signing to prevent "zone-walking".
>
>email addresses are not secret. That is not the privacy you can protect
>at all. Anyone can either do a internet search or just attempt to
>deliver an email to figure out if the email address is valid.
>
>

if there is a "email zone walking", the email spammer can use this feature to get the valid addrees easily and send trash emails.
If we hope to prevent the spammer from getting the email address easily, the email address should be regarded as secret.


Jiankang Yao

v2.23.0 | Report a Bug | By Email