IETF Logo Mail Archive

Re: [Uta] draft-ietf-uta-mta-sts-07 STS policy removal.

Viktor Dukhovni <ietf-dane@dukhovni.org> Thu, 10 August 2017 17:47 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B2AC1323B6 for <uta@ietfa.amsl.com>; Thu, 10 Aug 2017 10:47:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JaJ1lWNsAFwt for <uta@ietfa.amsl.com>; Thu, 10 Aug 2017 10:46:58 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [108.5.242.66]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4976D126CC4 for <uta@ietf.org>; Thu, 10 Aug 2017 10:46:58 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id DFDBD7A3309; Thu, 10 Aug 2017 17:46:56 +0000 (UTC)
Date: Thu, 10 Aug 2017 17:46:56 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: uta@ietf.org
Message-ID: <20170810174656.GX8146@mournblade.imrryr.org>
Reply-To: uta@ietf.org
References: <20170808210631.GO8146@mournblade.imrryr.org> <CANtKdUfcn=Z73pxXTov70e2+-0kc9Q6PGTchS=aUhRR0V+RNMw@mail.gmail.com> <9408F973-F6F0-41CD-9A81-82185686E24C@dukhovni.org> <CANtKdUc6PaDyBOcG_LhvezbnZ8JEv=xFf=MosQWSY8dg4MxjLg@mail.gmail.com> <20170809174827.GQ8146@mournblade.imrryr.org> <CANtKdUdqHM-bu_Z_GVcCN_Jca9SNNNdBkQKPOOtX_a=zW_EJZA@mail.gmail.com> <20170809183310.GU8146@mournblade.imrryr.org> <CANtKdUcqcoKjRctyGJ6Qc41vOxEvt8Knzjc6CZGn-0jqN9g5BA@mail.gmail.com> <6050C765-D3FB-4037-930A-43FE00A5CB89@dukhovni.org> <CANtKdUcc5mBNeUd9kPg_VemcbX4vdDwfvVgoXrr=nQtYLDeStQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CANtKdUcc5mBNeUd9kPg_VemcbX4vdDwfvVgoXrr=nQtYLDeStQ@mail.gmail.com>
User-Agent: Mutt/1.7.2 (2016-11-26)
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/ChYnZ7wOS8zeMWAcqR64YB-sCxI>
Subject: Re: [Uta] draft-ietf-uta-mta-sts-07 STS policy removal.
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Aug 2017 17:47:00 -0000

On Thu, Aug 10, 2017 at 10:02:41AM -0700, Daniel Margolis wrote:

> Also, note that this slightly oddifies the _DNS_ caching story; the
> NXDOMAIN TTL is derived from the SOA record, so unlike a "real" TXT record,
> the TTL on the "null" record comes (obviously) from a different place,
> which is a little bit (but only a little bit) weird in terms of usability
> of the configuration parameters, so to speak.

Yes, the negative TTL is from the SOA, but the TXT record TTL is
not something the sending MTA has to concern itself with, the TTLs
are handled transparently by the resolver.  The difference might
plausibly matter to the administrator of the receiving domain, who
might want to adjust the negative TTL, but he might do that regardless
of whether we refresh cached (!= "none") policies even when the
TXT is not present.  That is, if you want a shorter or longer
negative TTL, you would do tune it regardless of how we decide this
question.

> If anyone else has read this far on the thread, I'm happy to get feedback
> on this proposal from others on the list.

Yes, please!

-- 
	Viktor.

v2.23.0 | Report a Bug | By Email