IETF Logo Mail Archive

Re: [regext] Roman Danyliw's No Objection on draft-ietf-regext-epp-registry-maintenance-17: (with COMMENT)

Jody Kolker <jkolker@godaddy.com> Wed, 06 October 2021 16:40 UTC

Return-Path: <jkolker@godaddy.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D47503A1F9C; Wed, 6 Oct 2021 09:40:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=secureservernet.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z3Ec9PSOX6fD; Wed, 6 Oct 2021 09:40:46 -0700 (PDT)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2091.outbound.protection.outlook.com [40.107.237.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 926613A1F9E; Wed, 6 Oct 2021 09:40:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=c42f5OgQtSoJz23JQU8AJCUE2eWZc4afwkhDUqCswxKL1zo+NUgswLtZBIfHx7GflORd4inwglONhkoSrd2djVL0AYrlT/mHMrBbO2yA5Y/psS8XV63EaBlTSEIevCQpOsZbSQoL2d0vG6hod0oPmOHYM7VX8BYBhz385l6+GbermbytraafJAJcOpATUPklb9hyLcqmX7ZvFRaT9QS8teIZJTvSGYwWOtfA4Est359KYVKNwZwdLaTGQ2jQahl+QCc5nx88jy/y4z7P168W4iPkiBapobtP8dqrg6v9ZNsgdzcoMUakZGZ9lmG/klaSjJm/xZTgdbRi14iU7arxBw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Jknq590lnzwn72EXtneFGOU5TH6gTZAq6b3rIVtE7tY=; b=UPtAz/SVmzLIexY+OnHD7xoZPq/Kpj2rpxFoF0outCp0MEbNflhXvAqJ9xXKpwAzV4Mi+xNJR7GCglRBsGjgycqMktCHBkWjfnlejtTxyMn4E1ltcpAkeSDyJv8tAOqp23IzWPXIFhWbFCilTAJVzaQTSHHZAyVGMibR0NjCGta1vNAcxcc/EOIwWqpiW7qw0BFIUTl7baB9n9muz2ywTPz70mFA2+4TcITqcxyKcmzoPFaPrc/9pdXNGORi1WWBl2IWb6PPaimJNrhB3pJt9mTLx9kVtCysyTJh8wxkKH9y7smmbmkyKDrVVMYnSTBqeIz3cOnM6jHQMyWnKVcVtQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=godaddy.com; dmarc=pass action=none header.from=godaddy.com; dkim=pass header.d=godaddy.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=secureservernet.onmicrosoft.com; s=selector1-secureservernet-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Jknq590lnzwn72EXtneFGOU5TH6gTZAq6b3rIVtE7tY=; b=COOqEConXhHLsR8sV5CvOxpUgDJzVpo189rMm0LFSGOTpPbh8L42FesDUvc26YQlZWbvUKTlrB7Zw/nuAEbL9aUEjd14u9IfbLsWd2dRejYZ4CEZSoBPeuScPlIuXfXBMhLNolnQ/Ck4j+PM+d4UkWwhLjRBQ0bk38HeRZbAyy8=
Received: from CH2PR02MB6357.namprd02.prod.outlook.com (2603:10b6:610:7::16) by CH2PR02MB6539.namprd02.prod.outlook.com (2603:10b6:610:6d::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4587.18; Wed, 6 Oct 2021 16:40:33 +0000
Received: from CH2PR02MB6357.namprd02.prod.outlook.com ([fe80::3530:8950:2938:3fa1]) by CH2PR02MB6357.namprd02.prod.outlook.com ([fe80::3530:8950:2938:3fa1%7]) with mapi id 15.20.4566.023; Wed, 6 Oct 2021 16:40:33 +0000
From: Jody Kolker <jkolker@godaddy.com>
To: Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "draft-ietf-regext-epp-registry-maintenance@ietf.org" <draft-ietf-regext-epp-registry-maintenance@ietf.org>, "regext-chairs@ietf.org" <regext-chairs@ietf.org>, "regext@ietf.org" <regext@ietf.org>, James Galvin <galvin@elistx.com>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-regext-epp-registry-maintenance-17: (with COMMENT)
Thread-Index: AQHXusr389uBCKY/0Uq/7F8eWj/1bKvGKk9w
Date: Wed, 06 Oct 2021 16:40:33 +0000
Message-ID: <CH2PR02MB6357E3B547BF7E2B939B657BBFB09@CH2PR02MB6357.namprd02.prod.outlook.com>
References: <163353588801.29502.15150455017019718859@ietfa.amsl.com>
In-Reply-To: <163353588801.29502.15150455017019718859@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cert.org; dkim=none (message not signed) header.d=none;cert.org; dmarc=none action=none header.from=godaddy.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6edb72df-a0ac-47ce-654d-08d988e80470
x-ms-traffictypediagnostic: CH2PR02MB6539:
x-microsoft-antispam-prvs: <CH2PR02MB653985800D5EB35C9940D20DBFB09@CH2PR02MB6539.namprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR02MB6357.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(5660300002)(9686003)(52536014)(55016002)(54906003)(316002)(7696005)(33656002)(110136005)(53546011)(4326008)(6506007)(71200400001)(66476007)(966005)(26005)(186003)(86362001)(64756008)(8676002)(38100700002)(76116006)(66446008)(2906002)(122000001)(8936002)(83380400001)(508600001)(66556008)(66946007)(45080400002)(38070700005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 1n8Wy9cRePnxDIQABSpz02Q8+H8OhX/UjkyhZZ+X4Sjlvzms5HEZnEm68nkqb8pjGz2zqE5Rz4XraLzjTWdxSU0W5ZEJuJuOeBPTADc/3h5grbqhXqcDw11DtQo6uZqWJmnSwFmkA0Mm1P35WJmJIy1/+wHOln/TUoKG/nGkqUQgWUGGvtsruZrPqWG2IO90wPgoSmQ38ci9/I5GW99qj777KvskK+3FVW5aw2/37549n7eP1CozFuIpqsdS4NQqFupVXMvwCkCJtHw3XNx/AzQluib+fjgIB7Rh30lO2q2RmAULIRBAvQby788/UdF4O2Vv7LMvcRmH6/kBn9zExpKNQQdfXpSyxcL+Uvs7I4fPFt1yK/nYWi3q+uaWt4tZYsGZNBRS8gN6nwX4jCn3Qm6AsVSYmUgHXFz9GjFjSvcr79PvRKzZh6pcAQUHR24RA63mLVB2fUsATIaKzP6BWhGZKL4ve8G33NkoznBUkmj6yZvYRCy8EOwkG3hwFdvG5v/ErcRHb2VgWUb2I193lFXymxnWzoR9yoer0L2/YzL9BWinE1YMwcfwZzhlsp1jNsfIlfWgn71r1CfDJhBR5aa/jX5AzzH9VYEX8/7+5sKQ/DriwWpdN72qQSNa/RE2SDeLg4yPxVHToBx5LTOizgOQga7G/FVJZCly8NJMaf8mu6kB2xEsYW6+wBZlVAr+uWn5TwLQ3KHcncFHWx3foHGA87sfrzpZoGd9TSGWc9XTPxYlOGQt+DFK/HYOhA+jfA/5EqIzioP4+eQ7t0BqGzzGIX/5EeC5vjdljG/uKBDJLxwgdIUOsG9r9AdkOBtaCEvgMHylVAjq3PF4jD/ZbSU+IWZLmJbLPfqPpfpP44Fgnn0gOVusMRvvAdn6pKeHyu9o9jPg0D+ZTmkVMzjoTexlGAEVCC2aQg/Z4sKzFHhW43g2pyWI6sJPvnO/tyPx7X6p+lP2LwZ8lqpcd5AtPrvQzCj19jgnmeb44m7+s7GwH3kgmwZfK7NYAr1U3wn1QuJgchNKcFgeGbG6582oPtGVAizkqD/9PK6UJng3bg1yHnOIFN2FWqKKSlPyFd/cm64JQv+mHNRqvfE3PJCW7o3AFcQzGAPonfYFrPgzwX9+uBfK29jBsdxFvUSEb1MefT8KFOZZq00csBfHgLuGx2W/4RZU//9nasSqHogfJMa2LYk3r2LurnTy0ISB/GNtnysfGmNFFlJFWTeeTL0+BPAx8jrMR9DOInX1DlDzah08vPVtWyOMunBY28hF37Q2K52BLiqd/0DHbqhLVK4Gpv6OuQC47aI9AH89w+ZZlMU=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: godaddy.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH2PR02MB6357.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6edb72df-a0ac-47ce-654d-08d988e80470
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Oct 2021 16:40:33.6541 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d5f1622b-14a3-45a6-b069-003f8dc4851f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: nHEzHxJaHhIbma9qh4idudBpsF27rARkhS0K5HCO3FPPgReElVwk+S1PJ90ljZpBlf3mNO6UiyZ3qJbAdNCvCQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR02MB6539
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/yuEizyZ9dwUN-9zyYbGzJJJl2mQ>
Subject: Re: [regext] Roman Danyliw's No Objection on draft-ietf-regext-epp-registry-maintenance-17: (with COMMENT)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Oct 2021 16:40:52 -0000

Roman,

Thank you for review and comments.  Please find our responses in line below.  Please let us know if you have any questions.

Thanks,
Jody.

-----Original Message-----
From: Roman Danyliw via Datatracker <noreply@ietf.org> 
Sent: Wednesday, October 6, 2021 10:58 AM
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-regext-epp-registry-maintenance@ietf.org; regext-chairs@ietf.org; regext@ietf.org; James Galvin <galvin@elistx.com>; galvin@elistx.com
Subject: Roman Danyliw's No Objection on draft-ietf-regext-epp-registry-maintenance-17: (with COMMENT)

Caution: This email is from an external sender. Please do not click links or open attachments unless you recognize the sender and know the content is safe. Forward suspicious emails to isitbad@.



Roman Danyliw has entered the following ballot position for
draft-ietf-regext-epp-registry-maintenance-17: No Objection

When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.)


Please refer to https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fblog%2Fhandling-iesg-ballot-positions%2F&amp;data=04%7C01%7Cjkolker%40godaddy.com%7Cb84b5055519e4614fc8508d988e21865%7Cd5f1622b14a345a6b069003f8dc4851f%7C0%7C0%7C637691326930629065%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=m7cR8WPoeVkx0hwbVVTl4P9UmrgMtkGADkRsbFjKur4%3D&amp;reserved=0
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-regext-epp-registry-maintenance%2F&amp;data=04%7C01%7Cjkolker%40godaddy.com%7Cb84b5055519e4614fc8508d988e21865%7Cd5f1622b14a345a6b069003f8dc4851f%7C0%7C0%7C637691326930629065%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&amp;sdata=N1Jod4XovrypIM83Qel4GwppHSAyZg52cy1nFNp7A0M%3D&amp;reserved=0



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thank you to Melinda Shore for the SECDIR review.

** Section 7.

"If a client queries for a maintenance identifier, per Section 4.1.3.1 "Info Maintenance Item", that it is not authorized to access, the server MUST return an EPP error result code of 2201 [RFC5730]."

Should this be softened to give a server the flexibility to alternatively return a 2303 error ("Object does not exist") so the existence of a maintenance updates would remain unknown to unauthorized users? If not, this (likely minor) risk of leaking the existence of maintenance windows should be noted.

<<
The text has been updated to allow the server to return a 2303 or a 2101 error.

>>

** Section 7.  These could be read as conflicting.

(a) Section 7.  "a server MUST only provide maintenance information for clients that are authorized."

(b) Later in Section 7. "The list of top-level domains or registry
   zones returned in the "Info Maintenance Item" response SHOULD be
   filtered based on the top-level domains or registry zones the client
   is authorized."

(a) seems to say that a client must only get the information for which it is authorized, but (b) suggests that this filtering for those TLD/zones to restrict it only to authorized clients is only a should.

<< 
The text has been updated from MUST to SHOULD for the return of the 2201 or 2203 error.  This should resolve the conflict.
>>

v2.23.0 | Report a Bug | By Email