Re: [radext] #187 (dynamic-discovery): Timeouts..
"radext issue tracker" <trac+radext@trac.tools.ietf.org> Mon, 27 October 2014 10:50 UTC
Return-Path: <trac+radext@trac.tools.ietf.org>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A97B1A90AF for <radext@ietfa.amsl.com>; Mon, 27 Oct 2014 03:50:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HHd1AGrNY0LF for <radext@ietfa.amsl.com>; Mon, 27 Oct 2014 03:50:36 -0700 (PDT)
Received: from zinfandel.tools.ietf.org (zinfandel.tools.ietf.org [IPv6:2001:1890:123a::1:2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C69A1A90A1 for <radext@ietf.org>; Mon, 27 Oct 2014 03:50:34 -0700 (PDT)
Received: from localhost ([::1]:52847 helo=zinfandel.tools.ietf.org) by zinfandel.tools.ietf.org with esmtp (Exim 4.82_1-5b7a7c0-XX) (envelope-from <trac+radext@trac.tools.ietf.org>) id 1Xihsf-0001eQ-2u; Mon, 27 Oct 2014 03:50:33 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: radext issue tracker <trac+radext@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: jouni.nospam@gmail.com, stefan.winter@restena.lu
X-Trac-Project: radext
Date: Mon, 27 Oct 2014 10:50:33 -0000
X-URL: http://tools.ietf.org/radext/
X-Trac-Ticket-URL: http://tools.ietf.org/wg/radext/trac/ticket/187#comment:1
Message-ID: <078.9fc02d07c7351d64e4450160cafebd10@trac.tools.ietf.org>
References: <063.ba2b4bddc24d4cb1355d2b261657b2ec@trac.tools.ietf.org>
X-Trac-Ticket-ID: 187
In-Reply-To: <063.ba2b4bddc24d4cb1355d2b261657b2ec@trac.tools.ietf.org>
X-SA-Exim-Connect-IP: ::1
X-SA-Exim-Rcpt-To: jouni.nospam@gmail.com, stefan.winter@restena.lu, radext@ietf.org
X-SA-Exim-Mail-From: trac+radext@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on zinfandel.tools.ietf.org); SAEximRunCond expanded to false
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/iYz6pToMZt84bj9YaRJlAf8Fm5A
Cc: radext@ietf.org
Subject: Re: [radext] #187 (dynamic-discovery): Timeouts..
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: radext@ietf.org
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Oct 2014 10:50:41 -0000
#187: Timeouts.. Comment (by stefan.winter@restena.lu): I have changed the sentence to a relative, not an absolute statement: "much more in-depth guidance on DNS regarding timeouts, failure conditions, alteration of Time-To-Live (TTL) information than the Diameter counterpart" which makes the sentence more true than before. On the second part, TTL higher than certificate lifetime, this is out of scope for this specification: this draft specifies an algorithm on extracting connection-relevant data from DNS - and only that. The lifetime of a certificate is learned only later, when this list is used to establish a RADIUS/TLS connection with a discovered endpoint. The place to put a TTL restriction would thus be RFC6614, chapter "Connection Setup". Unfortunately, that RFC is silent on this matter :-( Since RFC6614 is currently being discussed for re-issue from Experimental to Standards track, I suggest to introduce the corresponding change in that RFC's "bis". Please let me know if that works for you and close the ticket if so. -- ------------------------------------+------------------------------------- Reporter: jouni.nospam@gmail.com | Owner: jouni.nospam@gmail.com Type: defect | Status: new Priority: major | Milestone: Component: dynamic-discovery | Version: Severity: - | Resolution: Keywords: | ------------------------------------+------------------------------------- Ticket URL: <http://tools.ietf.org/wg/radext/trac/ticket/187#comment:1> radext <http://tools.ietf.org/radext/>
- [radext] #187 (dynamic-discovery): Timeouts.. radext issue tracker
- Re: [radext] #187 (dynamic-discovery): Timeouts.. radext issue tracker
- Re: [radext] #187 (dynamic-discovery): Timeouts.. radext issue tracker