IETF Logo Mail Archive

Re: [regext] RFC 8748, EPP Registry Fee Extension: availability check result depending on fee extension?

Jothan Frakes <jothan@jothan.com> Fri, 26 June 2020 15:16 UTC

Return-Path: <jothan@jothan.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8124C3A080F for <regext@ietfa.amsl.com>; Fri, 26 Jun 2020 08:16:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=jothan-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8ErWHfaWTmj7 for <regext@ietfa.amsl.com>; Fri, 26 Jun 2020 08:16:35 -0700 (PDT)
Received: from mail-ot1-x32d.google.com (mail-ot1-x32d.google.com [IPv6:2607:f8b0:4864:20::32d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EFA3F3A07C2 for <regext@ietf.org>; Fri, 26 Jun 2020 08:16:34 -0700 (PDT)
Received: by mail-ot1-x32d.google.com with SMTP id w17so1062514otl.4 for <regext@ietf.org>; Fri, 26 Jun 2020 08:16:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jothan-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=JzZ0Aq5NigRQp0D6B8+z/7vSZhZQWolUuTAweyWHwes=; b=lGQoUY6kKPuCBf9dTTAXzJ/n8gqsztJuAnZhN6uwo/8oQhy5MezAkitQ2UTQk0u+VW rHYAUZiIComD0xgJK/vqelPuK+WBv39LGEBAG+dhdnolSVEWZ7qtj2ZY9GSSjoVFUoZy UH5+T6yDhTGuXYPpfl92zrnRequ/mNVH5IWch8BIRCQlUH3Rg6E/1RGEdt21QxfyfkR1 aYAte5CTYa5IPRXqUITnSA09sOINXHke0mfi2yZFnZlYqC4EoCVeJEohHLiPGT1iLhdX Xba/DMXtoY3BIZOiOxAzIpQPfq0GJMvX9tbvsYrUQ3ZCo28PFwC6YmcfXBe/QUFw7Uy0 0FIA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=JzZ0Aq5NigRQp0D6B8+z/7vSZhZQWolUuTAweyWHwes=; b=lOg1+k4HRQMpmMg9cxxJc7oiwQ5GqhV/VoGleqFvo2Znbg82y4Rh7sO34Xxtgwfo2y pkCXtVuuBes+XiNT5Bsjqr/jVi8P9qd+7NQ3ZCMM4g18qnLoRakevY5tlsQ9hJyK7Vag hykpqkrwiZZvvg8J95reUAHt7mouhjAsVjFjKbZ0QyFg90YPJbDZq/0rAOuEbybU4Ftt F4O87eKMOB/IjQpBehcgpiSo0Ye4H52sW/SOThpzIpuoYiM6ac3zMJrqscaINX+Y3dp0 VpkJYhE4gflvVQbyyrALkTVYlXo3gz5ARKkX+nruFp2FkuT3is0KtsxZWLYXfPtPE8yu xuQA==
X-Gm-Message-State: AOAM533p2QNIFZ1OqhelBKS6qujqsUmwm6UJ1axNmAsDTbTmFEkltFeW 83JlsnB56z9MIS2hKemF/ikMxbT7n8JOBfnZqIoTExkZ
X-Google-Smtp-Source: ABdhPJxP4eI9Oi9irppqIxktgT1VXiCPpassDFruG4oVi51E5d9O41zStS0uirOoB3UuvfTP8CjO9PZ6g13RhNJSEYk=
X-Received: by 2002:a05:6830:1d63:: with SMTP id l3mr2910383oti.261.1593184593849; Fri, 26 Jun 2020 08:16:33 -0700 (PDT)
MIME-Version: 1.0
References: <20200314164521.0B10EF406C9@rfc-editor.org> <ac9d9567-e847-8802-14e4-07c36e216c19@knipp.de> <5703B97E-20EF-4FCA-AA32-68AF595A088F@verisign.com> <04d5dfb5-d9ae-06a9-b137-4cedcefbc399@knipp.de> <9EF7EBBA-9E2E-4478-9F5B-1AC3C50191C5@verisign.com> <07e7b73b-3d87-c8bc-1d19-f783f1b02879@knipp.de> <5AC84F96-3A68-4657-AB2D-34F094FFC0ED@verisign.com>
In-Reply-To: <5AC84F96-3A68-4657-AB2D-34F094FFC0ED@verisign.com>
From: Jothan Frakes <jothan@jothan.com>
Date: Fri, 26 Jun 2020 08:15:47 -0700
Message-ID: <CAGrS0F+uGxtt+HQ8OH0UqEJoR9G67XhZttrUUHM8DWa+1v=2yQ@mail.gmail.com>
To: "Gould, James" <jgould=40verisign.com@dmarc.ietf.org>
Cc: "Thomas.Corte@knipp.de" <Thomas.Corte@knipp.de>, "regext@ietf.org" <regext@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c744db05a8fe3158"
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/r0u4EvZ_7bncH78i4Lgj_GloEzU>
Subject: Re: [regext] RFC 8748, EPP Registry Fee Extension: availability check result depending on fee extension?
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jun 2020 15:16:38 -0000

@Tomas  I could see someone submitting a non-conforming fee extension in
the check command to trick the registry into providing basic availability
or taken of a name.

Possible: perhaps
Probable: unlikely

You make a good point that the respective command, especially billable
events, should perhaps check that the appropriate fee extension was sent.
Depending upon the registry implementation, this could theoretically work,
but a registrar would still have to pay the respective registry designated
fee for a create/renew/transfer,

I am working very hard to imagine why someone would go to the trouble of
sending the wrong fee extension with a command if they were going to be
sending one at all.

Jothan Frakes



On Fri, Jun 26, 2020 at 7:47 AM Gould, James <jgould=
40verisign.com@dmarc.ietf.org> wrote:

> Thomas,
>
> Yes, to cover the corner case, avail="0" is the best response when the
> client does not include "create" in the fee extension of the check command
> of a premium domain name.  Without knowing the create fee of the premium,
> the create will likely fail, thus avail="0" is the correct answer.  The
> intent of the language in the RFC was to cover the broader case of a client
> that doesn't pass the fee extension at all in the check command, but your
> corner case is applicable.
>
> --
>
> JG
>
>
>
> James Gould
> Fellow Engineer
> jgould@Verisign.com
> <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>
>
> 703-948-3271
> 12061 Bluemont Way
> Reston, VA 20190
>
> Verisign.com <http://verisigninc.com/>
>
> On 6/26/20, 10:41 AM, "Thomas Corte (TANGO support)" <
> Thomas.Corte@knipp.de> wrote:
>
>     Hello James,
>
>     On 6/26/20 16:18, Gould, James wrote:
>
>     > but to cover the intent of the RFC the safest approach is to return
> avail="0" for a premium domain if the fee extension is not passed in the
> check command.
>
>     In my example, the fee extension was passed, but only asking for the
>     *renew* fee (which may be standard), not for the *create* fee (which
> may
>     be non-standard). Based on your answer above, the server would have to
>     return avail=1" then (because *some* fee extension was passed), however
>     the client would still be unaware that the create fee is non-standard.
>
>     If the "safest approach" is the goal here, it would probably be better
>     (albeit indeed more implementation effort) to not only require the fee
>     extension, but to specifically require the fee extension checking the
>     "create" price, no?
>
>     In this case, the RFC text may need a clarification, as it currently
>     doesn't reflect such a specific requirement. I'm aware this is a rare
>     corner case, but still one that should be covered.
>
>     Best regards,
>
>     Thomas
>
>
>     --
>     TANGO REGISTRY SERVICES® is a product of:
>     Knipp Medien und Kommunikation GmbH
>     Technologiepark                             Phone: +49 231 9703-222
>     Martin-Schmeisser-Weg 9                       Fax: +49 231 9703-200
>     D-44227 Dortmund                       E-Mail: support@tango-rs.com
>     Germany
>
>
>
> _______________________________________________
> regext mailing list
> regext@ietf.org
> https://www.ietf.org/mailman/listinfo/regext
>

v2.23.0 | Report a Bug | By Email