IETF Logo Mail Archive

Re: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06

"Salz, Rich" <rsalz@akamai.com> Tue, 28 June 2022 13:32 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2FE70C15A72F for <uta@ietfa.amsl.com>; Tue, 28 Jun 2022 06:32:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.85
X-Spam-Level:
X-Spam-Status: No, score=-7.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lsgyncb-n4z5 for <uta@ietfa.amsl.com>; Tue, 28 Jun 2022 06:32:52 -0700 (PDT)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7ED47C157B57 for <uta@ietf.org>; Tue, 28 Jun 2022 06:32:52 -0700 (PDT)
Received: from pps.filterd (m0050096.ppops.net [127.0.0.1]) by m0050096.ppops.net-00190b01. (8.17.1.5/8.17.1.5) with ESMTP id 25SB9Ynt010240; Tue, 28 Jun 2022 14:32:46 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=5QA79gR6XKvDAorzxx2eS5mrde4AIo1BneFXoawdya8=; b=izPIqd5EWfMDCDlGuBHIYZ9dO6bgnNp/pP051OoWgMVy1q0Qbj0YJkg+Sk4UeX5EL9uh rlNsLWNTQ4DDQchUq/uZGK8565GKdYqvbmeHoOyBAUiYYhiDRC6rnkkwiZ2O+BLqu14t 3/qq8j+cmwbpB/qI7hqjDIGngUP9wcf+TwKW8Mc0ChzPeGWrrquVl9B1vb90Q8eNVKGF Dk/MgXv1JCFnor5a5w7nhI2T9V7XiZiKScOty/QN48og0aTzkoWY+R6E80pX9TygEr7N wikxQzziYrGbwnWLhaz/kBtPhLjxOE1j+embg6EDIeOjT1baHctII97xB/YXa36pImdH mw==
Received: from prod-mail-ppoint7 (a72-247-45-33.deploy.static.akamaitechnologies.com [72.247.45.33] (may be forged)) by m0050096.ppops.net-00190b01. (PPS) with ESMTPS id 3gynj9037g-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Jun 2022 14:32:45 +0100
Received: from pps.filterd (prod-mail-ppoint7.akamai.com [127.0.0.1]) by prod-mail-ppoint7.akamai.com (8.17.1.5/8.17.1.5) with ESMTP id 25SClkEJ018667; Tue, 28 Jun 2022 09:32:30 -0400
Received: from email.msg.corp.akamai.com ([172.27.50.202]) by prod-mail-ppoint7.akamai.com (PPS) with ESMTPS id 3gxmvw2d6h-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Jun 2022 09:32:29 -0400
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.26; Tue, 28 Jun 2022 06:32:29 -0700
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.0986.026; Tue, 28 Jun 2022 06:32:29 -0700
From: "Salz, Rich" <rsalz@akamai.com>
To: Peter Saint-Andre <stpeter@stpeter.im>, "uta@ietf.org" <uta@ietf.org>, Viktor Dukhovni <ietf-dane@dukhovni.org>
Thread-Topic: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06
Thread-Index: Adh+m/F5NsfNlikUQICzeXBktMWF+wJLnuSAABUVDQAADdQ4AAAA8f8AACA8QwAAbbczAAAAlxkAAANPuoAAAyaaAAAAnFCAABcWPwA=
Date: Tue, 28 Jun 2022 13:32:29 +0000
Message-ID: <A79FD03E-DD1D-4DC4-9A18-1A6CABB894E9@akamai.com>
References: <002e01d87e9c$78a002e0$69e008a0$@smyslov.net> <032e01d8878f$c2e8f630$48bae290$@smyslov.net> <A7E6035E-7BCF-4BB3-BB87-D261ED98532D@gmail.com> <ae5b3a02-bcc3-2106-a39a-b67aae55d85c@stpeter.im> <ac41a613-f802-0138-1e1b-326d2baa6574@stpeter.im> <BE6D8552-2723-4B64-9909-22C0BC32AC75@gmail.com> <8cf3b08d-478c-4cc5-be19-46cc1cc90271@stpeter.im> <YroARsHlIeR97z52@straasha.imrryr.org> <45cf71a8-c890-695a-5469-a7d545143571@stpeter.im> <YrorpEyiXIWDinNz@straasha.imrryr.org> <3d050f75-d4bf-dc52-0c2f-db488b2604e7@stpeter.im>
In-Reply-To: <3d050f75-d4bf-dc52-0c2f-db488b2604e7@stpeter.im>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
x-originating-ip: [172.27.118.139]
Content-Type: text/plain; charset="utf-8"
Content-ID: <968CAAB971A17D48AC8FA900AA709203@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-28_07,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 suspectscore=0 malwarescore=0 phishscore=0 mlxlogscore=931 spamscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206280056
X-Proofpoint-ORIG-GUID: Tkfz7jhqoHt6fukjoqIg28v6DAQApUM-
X-Proofpoint-GUID: Tkfz7jhqoHt6fukjoqIg28v6DAQApUM-
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-28_07,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxlogscore=900 spamscore=0 phishscore=0 mlxscore=0 lowpriorityscore=0 clxscore=1011 bulkscore=0 suspectscore=0 malwarescore=0 impostorscore=0 priorityscore=1501 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206280057
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/g0ZBFhEfrpi1BuAGPJematPXQTc>
Subject: Re: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jun 2022 13:32:56 -0000

>    RFC 6125 (and now 6125bis) are not documents about the definition or 
    enforcement of DNS naming rules, only about client-side matching of 
    service identifiers presented in X.509 certificates against the client's 
    conception of what the service ought to be (i.e., against a reference 
    identifier). I see no reason to expand the scope of 6125bis in the 
    direction you might be proposing.

I strongly agree.

The current PR, https://github.com/richsalz/draft-ietf-uta-rfc6125bis/pull/50/files, does all that's needed.  (The diff is trivial to read)

v2.23.0 | Report a Bug | By Email