Re: [radext] #187 (dynamic-discovery): Timeouts..

"radext issue tracker" <trac+radext@trac.tools.ietf.org> Mon, 27 October 2014 10:50 UTC

Return-Path: <trac+radext@trac.tools.ietf.org>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A97B1A90AF for <radext@ietfa.amsl.com>; Mon, 27 Oct 2014 03:50:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HHd1AGrNY0LF for <radext@ietfa.amsl.com>; Mon, 27 Oct 2014 03:50:36 -0700 (PDT)
Received: from zinfandel.tools.ietf.org (zinfandel.tools.ietf.org [IPv6:2001:1890:123a::1:2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C69A1A90A1 for <radext@ietf.org>; Mon, 27 Oct 2014 03:50:34 -0700 (PDT)
Received: from localhost ([::1]:52847 helo=zinfandel.tools.ietf.org) by zinfandel.tools.ietf.org with esmtp (Exim 4.82_1-5b7a7c0-XX) (envelope-from <trac+radext@trac.tools.ietf.org>) id 1Xihsf-0001eQ-2u; Mon, 27 Oct 2014 03:50:33 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: "radext issue tracker" <trac+radext@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: jouni.nospam@gmail.com, stefan.winter@restena.lu
X-Trac-Project: radext
Date: Mon, 27 Oct 2014 10:50:33 -0000
X-URL: http://tools.ietf.org/radext/
X-Trac-Ticket-URL: http://tools.ietf.org/wg/radext/trac/ticket/187#comment:1
Message-ID: <078.9fc02d07c7351d64e4450160cafebd10@trac.tools.ietf.org>
References: <063.ba2b4bddc24d4cb1355d2b261657b2ec@trac.tools.ietf.org>
X-Trac-Ticket-ID: 187
In-Reply-To: <063.ba2b4bddc24d4cb1355d2b261657b2ec@trac.tools.ietf.org>
X-SA-Exim-Connect-IP: ::1
X-SA-Exim-Rcpt-To: jouni.nospam@gmail.com, stefan.winter@restena.lu, radext@ietf.org
X-SA-Exim-Mail-From: trac+radext@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on zinfandel.tools.ietf.org); SAEximRunCond expanded to false
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/iYz6pToMZt84bj9YaRJlAf8Fm5A
Cc: radext@ietf.org
Subject: Re: [radext] #187 (dynamic-discovery): Timeouts..
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: radext@ietf.org
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Oct 2014 10:50:41 -0000

#187: Timeouts..


Comment (by stefan.winter@restena.lu):

 I have changed the sentence to a relative, not an absolute statement:

 "much more in-depth guidance on DNS regarding timeouts, failure
 conditions, alteration of Time-To-Live (TTL) information than the Diameter
 counterpart"

 which makes the sentence more true than before.

 On the second part, TTL higher than certificate lifetime, this is out of
 scope for this specification: this draft specifies an algorithm on
 extracting connection-relevant data from DNS - and only that. The lifetime
 of a certificate is learned only later, when this list is used to
 establish a RADIUS/TLS connection with a discovered endpoint.

 The place to put a TTL restriction would thus be RFC6614, chapter
 "Connection Setup". Unfortunately, that RFC is silent on this matter :-(

 Since RFC6614 is currently being discussed for re-issue from Experimental
 to Standards track, I suggest to introduce the corresponding change in
 that RFC's "bis".

 Please let me know if that works for you and close the ticket if so.

-- 
------------------------------------+-------------------------------------
 Reporter:  jouni.nospam@gmail.com  |       Owner:  jouni.nospam@gmail.com
     Type:  defect                  |      Status:  new
 Priority:  major                   |   Milestone:
Component:  dynamic-discovery       |     Version:
 Severity:  -                       |  Resolution:
 Keywords:                          |
------------------------------------+-------------------------------------

Ticket URL: <http://tools.ietf.org/wg/radext/trac/ticket/187#comment:1>
radext <http://tools.ietf.org/radext/>