Re: [regext] [Ext] New Version Notification for draft-ietf-regext-epp-ttl-02.txt
Marc Groeneweg <marc.groeneweg@sidn.nl> Thu, 12 October 2023 09:29 UTC
Return-Path: <marc.groeneweg@sidn.nl>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9CDCC14CEFD for <regext@ietfa.amsl.com>; Thu, 12 Oct 2023 02:29:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sidn.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fELxMpsWQ6wS for <regext@ietfa.amsl.com>; Thu, 12 Oct 2023 02:29:21 -0700 (PDT)
Received: from EUR03-AM7-obe.outbound.protection.outlook.com (mail-am7eur03on2067.outbound.protection.outlook.com [40.107.105.67]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4902EC14F73F for <regext@ietf.org>; Thu, 12 Oct 2023 02:29:20 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hPdwWVQfyV6y7VKI1RI/DRcKLdvyRne+F4tQJwKqsFhz3MTXIETKigt3AobfuQCm6Z9eWOyPKjF1tkl/mcmfTePLXTKdw0mJf1Jy8eGyQFerb+wkTStbk/bMYD3cTBNQYYbm4MGAmrRPLe7lmvkFTUJyx8d85jx+sjjyJjmnY87ulmVNK5h762ZDFAOG5uZlrz7CIGZnyuXoTBRzaeNxUyZjJQlU+lgMmA4ZQI6QPwDjGwi5m9sR2x5ddKb+ld85a8murz01dNakW635ScQXxFLjIywThFb7Mtan49qNmmkpS2s6NB1lMkl6GkZmLFw80sfHuOXHvFRi25XKe2f1uw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Dfp8O8Ke2vAarkH+freNEFGJJCrl1SUDS42uXC0MkuI=; b=UyGU6fPFJSH9jCGruzNa6qsjEFuvTcSdTFOk1thFXQfmcDzQ3DSQayD2nczFf8IqonQkd/YBPKLVjsCd+bQJXaqzyNQHGcF1D4dTpuh6GjSC79UtMspEf1/veDsPqVjuAAEJPXKYygHKukZIJrZhMINojdQqsZXFaFAnMT3QF3vJXr/IqVihWklm3KNXw//AA+mrQHgLLe40ro4h1CaeEQD4Ls0CfJueLnwc3DpUHmOZ6sN2rPcHL1UbUdurMSvEu1xo+9pU0qWQ97uhvxHS5qQIUbykE+EMf+RIXtsLKL//fxpcBdCiefXY7+AD3aKVbumj8P+p3r3RJHIcLTx0UQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=sidn.nl; dmarc=pass action=none header.from=sidn.nl; dkim=pass header.d=sidn.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sidn.nl; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Dfp8O8Ke2vAarkH+freNEFGJJCrl1SUDS42uXC0MkuI=; b=gtnshtEnP1eMUXJ4aW4hbBhmA8hO7U0rp59LXwhIWnDHxJRiRjPMmOTyu4Z0k1k7PEGKrpqCbA8CZ184ElKh8cbigXk42/8wkw5NmAk6ANlP4X4k7ialr+vWz7Pca51zf2ZVxatlVpuvZ52Lp3lt2uyI/k7n3DX4ya/VkD0+sj0=
Received: from AM9P194MB1377.EURP194.PROD.OUTLOOK.COM (2603:10a6:20b:3a3::6) by PAXP194MB1278.EURP194.PROD.OUTLOOK.COM (2603:10a6:102:19b::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6863.41; Thu, 12 Oct 2023 09:29:17 +0000
Received: from AM9P194MB1377.EURP194.PROD.OUTLOOK.COM ([fe80::5ac3:8361:de1f:e7b6]) by AM9P194MB1377.EURP194.PROD.OUTLOOK.COM ([fe80::5ac3:8361:de1f:e7b6%4]) with mapi id 15.20.6863.043; Thu, 12 Oct 2023 09:29:17 +0000
From: Marc Groeneweg <marc.groeneweg@sidn.nl>
To: Brian Dickson <brian.peter.dickson@gmail.com>
CC: Gavin Brown <gavin.brown@icann.org>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [regext] [Ext] New Version Notification for draft-ietf-regext-epp-ttl-02.txt
Thread-Index: AQHZ4+bTGNQ3XsSuwEWgFlNC/aYperAWFQkAgAEdRLCAA3avAIAraFXa
Date: Thu, 12 Oct 2023 09:29:16 +0000
Message-ID: <AM9P194MB1377DFBE562A664253ED12E494D3A@AM9P194MB1377.EURP194.PROD.OUTLOOK.COM>
References: <169435084800.59554.13851311627757499519@ietfa.amsl.com> <BD082788-1221-448C-987D-B6AE753DE0C0@icann.org> <AM9P194MB1377CACE301CF1E84E5ED6C394F1A@AM9P194MB1377.EURP194.PROD.OUTLOOK.COM> <CAH1iCiqt+5CzeN2+mpctPnuSqDyTY_x=Yh3nBORQML7L33v5dA@mail.gmail.com>
In-Reply-To: <CAH1iCiqt+5CzeN2+mpctPnuSqDyTY_x=Yh3nBORQML7L33v5dA@mail.gmail.com>
Accept-Language: en-NL, en-US
Content-Language: en-GB
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=sidn.nl;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM9P194MB1377:EE_|PAXP194MB1278:EE_
x-ms-office365-filtering-correlation-id: d0728ed2-3155-4ca0-1bce-08dbcb05b4b0
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM9P194MB1377.EURP194.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(346002)(376002)(136003)(39850400004)(396003)(366004)(230922051799003)(64100799003)(1800799009)(186009)(451199024)(53546011)(9686003)(55016003)(33656002)(26005)(99936003)(122000001)(86362001)(38070700005)(38100700002)(166002)(6506007)(44832011)(66574015)(66476007)(2906002)(15650500001)(76116006)(83380400001)(966005)(8676002)(7696005)(478600001)(6916009)(8936002)(52536014)(64756008)(66946007)(316002)(66446008)(4326008)(54906003)(66556008)(71200400001)(41300700001)(5660300002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="sha256"; boundary="_F4EC7BD0-7FD7-674C-BBCA-01F93A8FADBF_"
MIME-Version: 1.0
X-OriginatorOrg: sidn.nl
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM9P194MB1377.EURP194.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: d0728ed2-3155-4ca0-1bce-08dbcb05b4b0
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Oct 2023 09:29:16.9199 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ab4d3626-c1c5-4a75-ab85-427f1a644a7d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: LbTD0PC8dvvK4XkEnZoYoIt5wcZokSnUL8xsEA90fNi/0DkSmBrZ0yqV41eu+aTogNxo8k7n6128LVbqnn3B8g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAXP194MB1278
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/3ZuT6ro-yuWrJseCaR0tmULqdeI>
Subject: Re: [regext] [Ext] New Version Notification for draft-ietf-regext-epp-ttl-02.txt
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Oct 2023 09:29:25 -0000
Hi Brian, I’ve nitpicked the document so-far. General: in the EPP command mapping there is a mention on a registry policy regarding TTL values which must/should be within server’s permitted range. And the subject returns in the Security considerations chapter. Is it an idea to mention this already in the general part of this document? Question on 2.2 <ttl:NS> element. Why is this element not OPTIONAL? What am I overseeing by thinking it should be optional, as is with the other elements within de domain object? Remark 1 on 3.1.1. In the example of the domain:info command the server responds with ttl:DS while there is no DS record within the domain object. I think it should mention a DS record, otherwise you’re working against (in part) the remark you shouldn’t use ttl elements for which there are no objects. Remark 2 on 3.1.1. In the example <ttl:A> and <ttl:AAAA> are returned while the domain object uses hostObjs. Should these values not be part of the hostObjs? Remark on 3.2.1: for the host create command example I see the use of <ttl:ttl> instead of the <ttl:A> and <ttl:AAAA> elements which I suspected to be used. What will the <ttl:ttl> achieve when used within the host object creation? Typo in chapter 5 last paragraph: EPP servrers -> EPP servers. That’s for now. Still looking into another scheme to make this to succeed… Best regards, Marc Groeneweg From: Brian Dickson <brian.peter.dickson@gmail.com> Date: Thursday, 14 September 2023 at 20:22 To: Marc Groeneweg <marc.groeneweg@sidn.nl> Cc: Gavin Brown <gavin.brown@icann.org>, regext@ietf.org <regext@ietf.org> Subject: Re: [regext] [Ext] New Version Notification for draft-ietf-regext-epp-ttl-02.txt On Tue, Sep 12, 2023 at 6:34 AM Marc Groeneweg <marc.groeneweg=40sidn.nl@dmarc.ietf.org <mailto:40sidn.nl@dmarc.ietf.org>> wrote: Hi Gavin, I am going to review your draft. I see you’re using a ttl object for adding, updating and removing ttls on a role type. Is it also an idea to extend existing objects (domain and host) with a ttl field? I know this is a different approach and perhaps more complex. But when I look at an example on changing a hostObj with 2 IPv4 addresses the ttl for “A” will apply for both IPv4 addresses I guess. When extending on separate fields it should be possible to get a ttl for each address right? And then there’s no need to give a ttl a role like “A” or “AAAA”. Speaking as a DNS person ("expert" might be overstating things): the TTL of any set of records with the same owner name (i.e. FQDN) and type (RRTYPE, such as A or AAAA) absolutely MUST be identical. This is part of the core DNS specification, and set in stone for all DNS implementations. It carries over to DNSSEC as well. So, please ensure the EPP specifications related to TTL adequately prevent any deviation from this requirement. Brian Really, it’s just a blunt idea from my side, and not thought through yet 😊. Forgot to mention thank you for taking the lead in this draft, as it’s mentioned a lot in OARC meetings that this would help in the daily DNS operations… Best regards, Marc Groeneweg From: regext <regext-bounces@ietf.org <_blank>> on behalf of Gavin Brown <gavin.brown@icann.org <_blank>> Date: Monday, 11 September 2023 at 14:28 To: regext@ietf.org <_blank> <regext@ietf.org <_blank>> Subject: Re: [regext] [Ext] New Version Notification for draft-ietf-regext-epp-ttl-02.txt [Some people who received this message don't often get email from gavin.brown@icann.org <_blank>. Learn why this is important at https://aka.ms/LearnAboutSenderIdentification <_blank> ] Hi all, Please look at this document. It contains a "straw man" implementation of a syntax for supporting TTLs for different record types. I do not personally like this syntax but have struggled to find one that both (a) seems intuitive and (b) can be fully validated using only the XML schema: the *easy* approach would be to have looser XML schema and then use MUSTs and MUST NOTs in the text, but I'd like to avoid that if I can. So, I am asking for suggestions on how to do it better. I would be very sad if the current model ended up being the final one! G. On 10/09/2023, 14:00, internet-drafts@ietf.org <_blank> <mailto:internet-drafts@ietf.org <_blank> wrote: A new version of Internet-Draft draft-ietf-regext-epp-ttl-02.txt has been successfully submitted by Gavin Brown and posted to the IETF repository. Name: draft-ietf-regext-epp-ttl Revision: 02 Title: Extensible Provisioning Protocol (EPP) mapping for DNS Time-To-Live (TTL) values Date: 2023-09-05 Group: regext Pages: 18 URL: https://www.ietf.org/archive/id/draft-ietf-regext-epp-ttl-02.txt <_blank> Status: https://datatracker.ietf.org/doc/draft-ietf-regext-epp-ttl/ <_blank> HTMLized: https://datatracker.ietf.org/doc/html/draft-ietf-regext-epp-ttl <_blank> Diff: https://author-tools.ietf.org/iddiff?url2=draft-ietf-regext-epp-ttl-02 <_blank> Abstract: This document describes an extension to the Extensible Provisioning Protocol (EPP) that allows EPP clients to manage the Time-To-Live (TTL) value for domain name delegation records. About this draft This note is to be removed before publishing as an RFC. The source for this draft, and an issue tracker, may can be found at https://github.com/gbxyz/epp-ttl-extension <_blank>. The IETF Secretariat -- Gavin Brown Principal Engineer, GDS Technical Services Internet Corporation for Assigned Names and Numbers (ICANN) https://www.icann.org <_blank> _______________________________________________ regext mailing list regext@ietf.org <_blank> https://www.ietf.org/mailman/listinfo/regext <_blank> _______________________________________________ regext mailing list regext@ietf.org <_blank> https://www.ietf.org/mailman/listinfo/regext <_blank>
- Re: [regext] [Ext] New Version Notification for d… Gavin Brown
- Re: [regext] [Ext] New Version Notification for d… Marc Groeneweg
- Re: [regext] [Ext] New Version Notification for d… Brian Dickson
- Re: [regext] [Ext] New Version Notification for d… Marc Groeneweg
- Re: [regext] [Ext] New Version Notification for d… Marc Groeneweg
- Re: [regext] [Ext] New Version Notification for d… Gavin Brown
- Re: [regext] [Ext] New Version Notification for d… Pawel Kowalik