Re: [regext] [Ext] [EXTERNAL] I-D Action: draft-ietf-regext-epp-ttl-07.txt
Tim Wicinski <tjw.ietf@gmail.com> Tue, 09 April 2024 16:38 UTC
Return-Path: <tjw.ietf@gmail.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 157EEC14F6E4 for <regext@ietfa.amsl.com>; Tue, 9 Apr 2024 09:38:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GPhItrhLZOaV for <regext@ietfa.amsl.com>; Tue, 9 Apr 2024 09:38:03 -0700 (PDT)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com [IPv6:2a00:1450:4864:20::52c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4B495C18DB98 for <regext@ietf.org>; Tue, 9 Apr 2024 09:37:06 -0700 (PDT)
Received: by mail-ed1-x52c.google.com with SMTP id 4fb4d7f45d1cf-56e6a1edecfso2868343a12.1 for <regext@ietf.org>; Tue, 09 Apr 2024 09:37:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712680623; x=1713285423; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=NLQzGCbNYXMqvOoMx4JyXoFcKokA96mqzwhcqBZvEd4=; b=VpA3ESxUVxk9Owk2JVDYYksx6UOqAgdLsUjH0wb1OgbOAfOT3wtd0wOGuVaTLU3taB JQ/FsafT47ekoeP0s/HR7BBDa0PB6m08P+z0cA3lfaOVuRTrX20bw85GXahUUYCmTeex 6s9ZFyIpf3rrHujm5l6nts/ldAFpZT1B/02iKw73Ajfbqa+3UwYX3sK4UVO6q7jkB7SR 4Mkn57DDdoknU66mZGT4p43enYGYuKYKS4K1Da0mHZrRuFlt9y2/qdS9SVj2m2iYjk1b oZf4SK7JkxtyIGxotgZZy2na/Cdxj/qjIqSG+MVutvjEEZ0pVSQswtalhPxA0oUsVOLP 7F1w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712680623; x=1713285423; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=NLQzGCbNYXMqvOoMx4JyXoFcKokA96mqzwhcqBZvEd4=; b=AbX5XZT8CJGysbKNtuEqzJ+BhCZfnw9GJ7SdfyiOAX3kS0MJ4c9yXxA88lgNV8qdrr T7zLre7hit6NgonDgolU6s2cbiFOSiJVn6urPiDp/Ohp48R6iefM8i7q9M7rBLWtXxyD 3LmYSws96y8ufJrbho4x//X4Z1PO6/c4CZp2qGtQnZ1xv0cuq9Tr04dHs3ZykZQDZaHX 1i3KFt7w2+AFUB2Z2MsYgXtK+CSxOXbpRyz+coj6RIkQ3SVPDRJtpkx9sdbhmeRxx1fJ Yv/zxK3n9TPS6IvUh644g+wN5wah/Dt9279Jqdw/MQ1oDlnRBYovjdQKnRrx/PF6ZNS4 9CAg==
X-Forwarded-Encrypted: i=1; AJvYcCUtjRHrjNW8Y3lsf4GWWlYNF2Xxw4ruhpRX8QlEgcGCFTeFy2qBldPfk5azlavActXGzU4yU3QwGe02ZL8TzFs=
X-Gm-Message-State: AOJu0YzlWiFsciha12EGZXjCHHTpCc6vDwuZS275NmqspIiPKxsFTwSG /Aud8YbQPzRDaD8/qE84oxT9g9RYA7S82odJX1Sh3wKH8uZGZMei7tltigQdHQ/TM4vtqJp9Wj1 KIVyerQ4dOrXipsNjFUFGFuQZpXZjTQSc
X-Google-Smtp-Source: AGHT+IGHsmngDZ0ytMm+MYjGONpLgzPmQL59MfCILI/nOyt8oEoQVSKWcU/B5uUuX37zjiDFz4nzZeJFiu69dPLaaMo=
X-Received: by 2002:a50:cd97:0:b0:56e:3078:74 with SMTP id p23-20020a50cd97000000b0056e30780074mr42836edi.31.1712680623284; Tue, 09 Apr 2024 09:37:03 -0700 (PDT)
MIME-Version: 1.0
References: <171145147703.45881.9173686507890308414@ietfa.amsl.com> <CH3PR10MB739654F8823B90953053CE16C9002@CH3PR10MB7396.namprd10.prod.outlook.com> <708F344F-A884-4330-B757-1AF042F171CF@icann.org> <CH3PR10MB739661C8183E0BB699FC8C7CC9072@CH3PR10MB7396.namprd10.prod.outlook.com>
In-Reply-To: <CH3PR10MB739661C8183E0BB699FC8C7CC9072@CH3PR10MB7396.namprd10.prod.outlook.com>
From: Tim Wicinski <tjw.ietf@gmail.com>
Date: Tue, 09 Apr 2024 12:36:51 -0400
Message-ID: <CADyWQ+E3G902BKYarLz7P9_Bvrg3FsoTOGrN1Vea9ayLpFw02A@mail.gmail.com>
To: Rick Wilhelm <Rwilhelm=40PIR.org@dmarc.ietf.org>
Cc: Gavin Brown <gavin.brown@icann.org>, "regext@ietf.org" <regext@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000002a286f0615ac882e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/cU6ecKUkK1aajSt4JGrk8lQjxsA>
Subject: Re: [regext] [Ext] [EXTERNAL] I-D Action: draft-ietf-regext-epp-ttl-07.txt
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Apr 2024 16:38:07 -0000
More for the WG/Chairs than Gavin or Rick I think this document is ready for WGLC - are there any reasons why it should not be? thanks tim On Tue, Apr 9, 2024 at 11:23 AM Rick Wilhelm <Rwilhelm= 40PIR.org@dmarc.ietf.org> wrote: > Gavin, et al, > > > > I’m good with the handlings that you describe below. > > > > That includes the item in 3.2, I grok your point about the supplied TTL > values already needing to conform to EPP server policy. > > > > And the various rewordings (1.2.1.2 and 1.2.1.2.1) also look good. > > > > Thanks, > > Rick > > > > > > > > > > *From: *Gavin Brown <gavin.brown@icann.org> > *Date: *Tuesday, April 9, 2024 at 8:32 AM > *To: *Rick Wilhelm <Rwilhelm@PIR.org> > *Cc: *regext@ietf.org <regext@ietf.org> > *Subject: *Re: [Ext] [regext] [EXTERNAL] I-D Action: > draft-ietf-regext-epp-ttl-07.txt > > Hi Rick, thanks for sharing your feedback, my responses are below. > > > On 8 Apr 2024, at 15:52, Rick Wilhelm <Rwilhelm=40PIR.org@dmarc.ietf.org> > wrote: > > > > Gavin, et al, > > This is a mixture of nits and wording things. I had provided this > privately to Gavin, he indicated it was better to just send directly to the > list. > > 1.2.1: > > The <ttl:ttl> element may have the following attributes, depending on > > Q1: The use of the uncapitalized ‘may’ here could be confusing. Can that > be capitalized? Or perhaps reworded? > > I will capitalize "MAY" here as suggested. > > > 3. "min", which MUST NOT be present in commands frames but MAY be > > and > > 4. "default", which MUST NOT be present in commands frames but MAY > > and > > 5. "max", which MUST NOT be present in commands frames but MAY be > > Q2: In all three of these, I think that “commands” should singular; as > in “… in command frames” (or perhaps “…in a command frame” ??) > > Agreed, corrected. > > > 1.2.1.2 > > [RFC6895], and is intended to match any existing and future RRTYPE > > I think that we mean “existing or future” ? > > I've reworded this slightly to say: > > "The regular expression [...] is intended to match both existing and > future RRTYPE mnemonics." > > I think this wording is clearer. > > > this document in the event that a new DNS record that exists above a > > zone cut is specified. > > I think that eliding the part about “exists above a zone cut” would be > helpful, because someone will argue about “what is a zone cut? And why > haven’t you defined it??” So perhaps: “… in the event that a new DNS record > (type?) is specified.” > > 1.2.1.2.1 > > I've reworded this to say (continuing from the sentence above): > > "This eliminates the need to update this document in the event that new > DNS records that exist above a zone cut (Section 7 of [RFC9499]) see is > specified." > > This adds an informational reference to RFC9499 so it's clear what is > meant by a zone cut. > > > These > > servers MUST reject commands which attempt to set TTL values for > > these record types for domain objects using a 2004 "Parameter value > > range" error. > > Noting that just above this text, in 1.2.1.2, the doct uses a different > form for a 2004 error code. For consistency, would suggest text of: > > A server which implements host objects and receives a command which > attempts to set TTL values for these record types on a domain objects MUST > respond with a 2004 “Parameter value range” error. > > I've updated the wording to be consistent in both places. > > > 3.1 > > Servers MAY restrict the supported DNS record types in accordance > > with their own operational needs. > > Suggest that “needs” be replaced with the more clear and direct “policy” > > Agreed. > > > 3.2 > > EPP servers which implement this extension SHOULD use the values > > provided by EPP clients for the TTL values records published in the > > DNS for domain and and objects. > > Seems like this sentence should give a nod to server policy. For > example, just above this text, there is text that states: > > If an EPP server receives an <update> command containing a TTL value > > that is outside the server's permitted range, it MUST reject the > > command with a 2306 "Parameter value policy error" response. > > Perhaps the sentence in 3.2 could read: > > EPP servers which implement this extension SHOULD use the values > > provided by EPP clients for the TTL values records published in the > > DNS for domain and and objects, if such values conform to server policy. > > I think this change is redundant, since the server already MUST reject any > transform command that tries to set a TTL value outside the permitted > policy; therefore there is no need for additional server logic to check if > supplied TTL values conform to server policy when publishing records in the > DNS, since those values will already conform to that policy. Does that make > sense? > > > 5.1: (this will be an odd comment, coming from me!! > > Domain registry operators must strike a balance between, on the one > > hand, the desire of registrants for changes to their domains to be > > visible in the DNS quickly, and on the other, the increased DNS query > > traffic that short TTLs can bring. > > While I firmly believe that the statement as written, I’m not sure if > this belongs in the RFC. In the spirit of “suggest text”: I think that > perhaps the statement that goes in the RFC is that: “Domain registry > operators must consider the balance between, on the one hand, …” (and > continue from there). That is, I think that the notion of “striking a > balance” is a value judgement, but to “consider the balance” is > judgement-free. Hmm!! > > Agreed, I've updated the wording. > > Diff here: > https://github.com/gbxyz/epp-ttl-extension/commit/d25d21fc54c877bb399205bddbc45ae616ccc385 > > G. > > -- > Gavin Brown > Principal Engineer, Global Domains & Strategy > Internet Corporation for Assigned Names and Numbers (ICANN) > > https://www.icann.org > _______________________________________________ > regext mailing list > regext@ietf.org > https://www.ietf.org/mailman/listinfo/regext >
- Re: [regext] [Ext] I-D Action: draft-ietf-regext-… Gavin Brown
- [regext] I-D Action: draft-ietf-regext-epp-ttl-07… internet-drafts
- Re: [regext] [EXTERNAL] I-D Action: draft-ietf-re… Rick Wilhelm
- Re: [regext] [Ext] [EXTERNAL] I-D Action: draft-i… Gavin Brown
- Re: [regext] [Ext] [EXTERNAL] I-D Action: draft-i… Rick Wilhelm
- Re: [regext] [Ext] [EXTERNAL] I-D Action: draft-i… Tim Wicinski