Re: [openpgp] User ID Packet: expand recommendation to include hostname
Simon Josefsson <simon@josefsson.org> Tue, 28 July 2015 20:56 UTC
Return-Path: <simon@josefsson.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B94821B2E90 for <openpgp@ietfa.amsl.com>; Tue, 28 Jul 2015 13:56:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.348
X-Spam-Level:
X-Spam-Status: No, score=0.348 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HELO_EQ_SE=0.35, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ABHpwltrA0Yv for <openpgp@ietfa.amsl.com>; Tue, 28 Jul 2015 13:56:28 -0700 (PDT)
Received: from duva.sjd.se (duva.sjd.se [IPv6:2001:9b0:1:1702::100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E6381B3066 for <openpgp@ietf.org>; Tue, 28 Jul 2015 13:56:27 -0700 (PDT)
Received: from latte.josefsson.org ([155.4.17.3]) (authenticated bits=0) by duva.sjd.se (8.14.4/8.14.4/Debian-4) with ESMTP id t6SKuLfT013460 (version=TLSv1/SSLv3 cipher=AES128-GCM-SHA256 bits=128 verify=NOT); Tue, 28 Jul 2015 22:56:22 +0200
From: Simon Josefsson <simon@josefsson.org>
To: "Neal H. Walfield" <neal@walfield.org>
References: <87pp3lk91r.wl-neal@walfield.org> <87pp3lhesi.fsf@vigenere.g10code.de> <87oaj5jvc9.wl-neal@walfield.org> <87380hky9n.fsf@alice.fifthhorseman.net> <87fv4cnss2.wl-neal@walfield.org>
OpenPGP: id=54265E8C; url=http://josefsson.org/54265e8c.txt
X-Hashcash: 1:22:150728:neal@walfield.org::KGHvpNFWsNw8HLLd:18LP
X-Hashcash: 1:22:150728:dkg@fifthhorseman.net::xqU52RZSATKt9VYa:4VCl
X-Hashcash: 1:22:150728:openpgp@ietf.org::lA2vjdes3zilZBsh:forV
Date: Tue, 28 Jul 2015 22:56:20 +0200
In-Reply-To: <87fv4cnss2.wl-neal@walfield.org> (Neal H. Walfield's message of "Sat, 25 Jul 2015 17:47:25 +0200")
Message-ID: <87a8ugvw5n.fsf@latte.josefsson.org>
User-Agent: Gnus/5.130014 (Ma Gnus v0.14) Emacs/24.4 (gnu/linux)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
X-Virus-Scanned: clamav-milter 0.98.7 at duva.sjd.se
X-Virus-Status: Clean
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/_zA-HfPOWAJ_IVRMf_TJHBbavw4>
Cc: IETF OpenPGP <openpgp@ietf.org>, Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Subject: Re: [openpgp] User ID Packet: expand recommendation to include hostname
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2015 20:56:28 -0000
"Neal H. Walfield" <neal@walfield.org> writes: > Hi, > > At Tue, 21 Jul 2015 23:15:48 +0200, > Daniel Kahn Gillmor wrote: >> >> On Tue 2015-07-21 19:04:22 +0200, Neal H. Walfield wrote: >> > At Tue, 21 Jul 2015 14:32:29 +0200, >> > Werner Koch wrote: >> >> > Simon pointed out to me in another context that the user id (section >> >> > 5.11 of RFC 4880) is not always in RFC 2822 name-addr format, but is >> >> > sometimes simply a hostname. I think we should expand the >> >> > recommendation in that section to cover this usage. >> >> >> >> The name-addr convention has served us well for more than 20 years and I >> >> see no reason to explicitly recommend the use of just a hostname. I see >> >> no problem which will be solved by this. In case the hostname shall be >> >> used similar to a a user id (e.g. for DNS lookup), it is easier to use a >> >> pseudo mail address like hostmaster@foo.example.org. >> > >> > I'm not making a recommendation about what should be done, but >> > suggesting we update the RFC to reflect current practice. >> >> Can you point to existing examples of this usage (by fingerprint, >> maybe)? > > This usage was pointed out to me by Simon. I've cc'd him. I hope > he'll be able to answer your question. Nevertheless, Derek Atkins' > follow up to your question suggests that at least some people are > using this convention. I cannot recall what application this was for, but I distinctly recall working with OpenPGP keys issued for hostnames in some context. If nobody has any better pointer than this, I suggest to ignore this aspect. I'm not sure adding recommendations about using hostmaster@foo.example.org is a good idea, so -1 on that -- better to be silent on things without a use-case. /Simon
- [openpgp] User ID Packet: expand recommendation t… Neal H. Walfield
- Re: [openpgp] User ID Packet: expand recommendati… Werner Koch
- Re: [openpgp] User ID Packet: expand recommendati… Neal H. Walfield
- Re: [openpgp] User ID Packet: expand recommendati… Daniel Kahn Gillmor
- Re: [openpgp] User ID Packet: expand recommendati… Derek Atkins
- Re: [openpgp] User ID Packet: expand recommendati… Neal H. Walfield
- Re: [openpgp] User ID Packet: expand recommendati… Neal H. Walfield
- Re: [openpgp] User ID Packet: expand recommendati… Simon Josefsson