IETF Logo Mail Archive

[regext] Re: [Ext] Murray Kucherawy's Discuss on draft-ietf-regext-epp-ttl-17: (with DISCUSS and COMMENT)

Gavin Brown <gavin.brown@icann.org> Tue, 07 January 2025 13:52 UTC

Return-Path: <gavin.brown@icann.org>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 529D5C14F74A; Tue, 7 Jan 2025 05:52:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.904
X-Spam-Level:
X-Spam-Status: No, score=-1.904 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mYK6FoZppL98; Tue, 7 Jan 2025 05:52:30 -0800 (PST)
Received: from ppa2.lax.icann.org (ppa2.lax.icann.org [192.0.33.77]) by ietfa.amsl.com (Postfix) with ESMTP id D9C22C14F701; Tue, 7 Jan 2025 05:52:30 -0800 (PST)
Received: from MBX112-E2-CO-1.pexch112.icann.org (out.mail.icann.org [64.78.33.7]) by ppa2.lax.icann.org (8.18.1.2/8.18.1.2) with ESMTPS id 507DqSDj000355 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 7 Jan 2025 13:52:29 GMT
Received: from MBX112-W2-CO-1.pexch112.icann.org (10.226.41.128) by MBX112-W2-CO-2.pexch112.icann.org (10.226.41.130) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Tue, 7 Jan 2025 05:52:28 -0800
Received: from MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) by MBX112-W2-CO-1.pexch112.icann.org ([169.254.44.235]) with mapi id 15.02.1544.011; Tue, 7 Jan 2025 05:52:28 -0800
From: Gavin Brown <gavin.brown@icann.org>
To: "Murray S. Kucherawy" <superuser@gmail.com>
Thread-Topic: [Ext] Murray Kucherawy's Discuss on draft-ietf-regext-epp-ttl-17: (with DISCUSS and COMMENT)
Thread-Index: AQHbUeQrKksH+UTS+kCOMcmjyaA00LLt1fIAgADWKACAHUz+AA==
Date: Tue, 07 Jan 2025 13:52:27 +0000
Message-ID: <AB2D15D8-D847-435F-A569-E82F7D5E76D1@icann.org>
References: <173459183142.43926.14691670610203247808@dt-datatracker-65f549669d-lhv7k> <4B84BD4D-6C45-4C98-92BB-E91EEFF65495@icann.org> <CAL0qLwYNr2z-i9uGRJp1U0oikHiDRGu=CY+5ZTR5+=yQcqZ6iA@mail.gmail.com>
In-Reply-To: <CAL0qLwYNr2z-i9uGRJp1U0oikHiDRGu=CY+5ZTR5+=yQcqZ6iA@mail.gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.0.47.234]
x-source-routing-agent: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <A31CF338DD2A47419A49EAAB5EA8B488@pexch112.icann.org>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1057,Hydra:6.0.680,FMLib:17.12.68.34 definitions=2025-01-07_02,2025-01-06_02,2024-11-22_01
Message-ID-Hash: G5DKC4N3DZFSOYMQ6RNEGDBIUQ6YWQOX
X-Message-ID-Hash: G5DKC4N3DZFSOYMQ6RNEGDBIUQ6YWQOX
X-MailFrom: gavin.brown@icann.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-regext.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, "draft-ietf-regext-epp-ttl@ietf.org" <draft-ietf-regext-epp-ttl@ietf.org>, "regext-chairs@ietf.org" <regext-chairs@ietf.org>, "regext@ietf.org" <regext@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [regext] Re: [Ext] Murray Kucherawy's Discuss on draft-ietf-regext-epp-ttl-17: (with DISCUSS and COMMENT)
List-Id: Registration Protocols Extensions Working Group <regext.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/4aGvrKFo5VSTdTxmoD_yWEeDyp0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Owner: <mailto:regext-owner@ietf.org>
List-Post: <mailto:regext@ietf.org>
List-Subscribe: <mailto:regext-join@ietf.org>
List-Unsubscribe: <mailto:regext-leave@ietf.org>

Hi Murray,

> On 19 Dec 2024, at 22:25, Murray S. Kucherawy <superuser@gmail.com> wrote:
> 
> On Thu, Dec 19, 2024 at 5:02 AM Gavin Brown <gavin.brown@icann.org> wrote:
> A server may need to disregard the provided TTL values in order to address security and stability issues. So "MUST" is not appropriate, because (to quote RFC 2119) there may exist valid reasons in particular circumstances to ignore those values. But a normative keyword is needed to establish the expectation that client-provided TTLs will be honoured by the server. "SHOULD" seems appropriate because it's stronger than "MAY" but weaker than "MUST".
> 
> I think that's a fine use of SHOULD.  What I'm suggesting is that we might want to add a phrase or sentence that gives an example of when you might anticipate one might knowingly disregard a TTL.
> 
> BCP 14 says basically "SHOULD means MUST unless you really know what you're doing", and it's often helpful to include a bit of prose to help the implementer meet that bar.

I will add a sentence at the end of the paragraph as follows:

EPP servers which implement this extension SHOULD use the values provided by EPP clients for the TTL values of records published in the DNS for domain and (if supported) host objects. ***Servers MAY disregard these values in order to address security and stability issues, as described in Section 5 and Section 6.***

This will be in the version that will be published momentarily.

G.

--
Gavin Brown
Principal Engineer, Global Domains & Strategy
Internet Corporation for Assigned Names and Numbers (ICANN)

https://www.icann.org

v2.31.3 | Report a Bug | By Email | System Status