Re: [Tools-discuss] FYI: tools.ietf.org over plain HTTP may present wrong site
Robert Sparks <rjsparks@nostrum.com> Wed, 13 April 2022 16:52 UTC
Return-Path: <rjsparks@nostrum.com>
X-Original-To: tools-discuss@ietfa.amsl.com
Delivered-To: tools-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 9C55A3A18A6
for <tools-discuss@ietfa.amsl.com>; Wed, 13 Apr 2022 09:52:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.09
X-Spam-Level:
X-Spam-Status: No, score=-2.09 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001,
T_SCC_BODY_TEXT_LINE=-0.01, T_SPF_HELO_PERMERROR=0.01,
T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001]
autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key)
header.d=nostrum.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 2DAZTFTQkbzS for <tools-discuss@ietfa.amsl.com>;
Wed, 13 Apr 2022 09:52:20 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 00F693A18AF
for <tools-discuss@ietf.org>; Wed, 13 Apr 2022 09:52:19 -0700 (PDT)
Received: from [192.168.1.114] ([47.186.48.51]) (authenticated bits=0)
by nostrum.com (8.17.1/8.16.1) with ESMTPSA id 23DGqGVq031254
(version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO);
Wed, 13 Apr 2022 11:52:17 -0500 (CDT)
(envelope-from rjsparks@nostrum.com)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nostrum.com;
s=default; t=1649868737;
bh=ov70L8Ym7q60dacr/lJMuPzJ5DZEFspCUIdIIMzC394=;
h=Date:Subject:To:References:From:In-Reply-To;
b=Fbx2XJH7jW/CRwJn7snhPFpBzWyiT8u3USgUceVPIEAznuRf8lZsKZBPwHAAF+4dj
EBAPYlv3GemjuhgR+eVyKY6sVL6mj9Zwk1ViPqLjW4vZzMptNgAw8gk790yxmNQPJ7
iV0qMHhvPAc52fy2dk5VdGMkkAF4klTdr869UaxQ=
X-Authentication-Warning: raven.nostrum.com: Host [47.186.48.51] claimed to be
[192.168.1.114]
Message-ID: <d9641dc0-eb8d-0229-f797-1ffe802697bc@nostrum.com>
Date: Wed, 13 Apr 2022 11:52:11 -0500
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0)
Gecko/20100101 Thunderbird/91.8.0
Content-Language: en-US
To: Edwin Balani <edwin@lt0.org.uk>, tools-discuss@ietf.org
References: <20220413163107.deqe7aozeh2hsj3l@ant.2ec.uk>
From: Robert Sparks <rjsparks@nostrum.com>
In-Reply-To: <20220413163107.deqe7aozeh2hsj3l@ant.2ec.uk>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/tools-discuss/0Sm3MfFlxzcfQ0RggZJZ_t1F-vI>
Subject: Re: [Tools-discuss] FYI: tools.ietf.org over plain HTTP may present
wrong site
X-BeenThere: tools-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Tools Discussion <tools-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tools-discuss>,
<mailto:tools-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tools-discuss/>
List-Post: <mailto:tools-discuss@ietf.org>
List-Help: <mailto:tools-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tools-discuss>,
<mailto:tools-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Apr 2022 16:52:25 -0000
Yes, this occasionally happens, only over http. Henrik hasn't been able to fix it, but we're very close to the point where we will de-delegate tools.ietf.org (I'm expecting by mid-May at this point). The workaround in the meantime is to use https: RjS On 4/13/22 11:31 AM, Edwin Balani wrote: > I originally sent a wordier version of the below to > webmaster@tools.ietf.org a few months ago, but saw nothing out of it. > It is an issue with web redirect configuration on one of the hosts > serving tools.ietf.org. > > Short of re-mailing the same people, I did stumble upon the notice [1] > regarding tools.ietf.org. I guess the above address might not be so > closely watched any more, so tools-discuss can have this instead. I > can't find mention in the list archive, so please consider it both a > problem report and a general FYI. > > -- > > Depending on which server you hit for any page on > http://tools.ietf.org/ you are either redirected to the same path > under HTTPS, or you get the content for Henrik's personal site, > http://levkowetz.com/ . > > Currently I see tools.ietf.org served by two hosts, dechaunac and > zinfandel. The http -> https redirect is only missing on zinfandel. > Compare > curl -i http://dechaunac.tools.ietf.org -H 'Host: tools.ietf.org' > and > curl -i http://zinfandel.tools.ietf.org -H 'Host: tools.ietf.org' > > Accordingly, anything under http://tools.ietf.org/ appears to be a > dead link if your client happens to hit zinfandel: > curl -i http://zinfandel.tools.ietf.org/html/rfc5822 -H 'Host: > tools.ietf.org' > > I think the issue is as plain as zinfandel serving levkowetz.com > content under HTTP (not HTTPS) virtualhost tools.ietf.org: > curl -i http://zinfandel.tools.ietf.org/pets.html -H 'Host: > tools.ietf.org' > > (compare http://levkowetz.com/pets.html ) > > As for how I chanced upon this: I followed hyperlinks in the wild to > RFCs [2] [3] from [4]. > > [1]: > https://mailarchive.ietf.org/arch/msg/ietf/0n-6EXEmkTp3Uv_vj-5Vnm3o0bo/ > [2]: http://tools.ietf.org/html/rfc4408 > [3]: http://tools.ietf.org/html/rfc4871 > [4]: https://sendersupport.olc.protection.outlook.com/pm/policies.aspx >
- [Tools-discuss] FYI: tools.ietf.org over plain HT… Edwin Balani
- Re: [Tools-discuss] FYI: tools.ietf.org over plai… Robert Sparks