Re: [websec] AppsDir review of draft-ietf-websec-strict-transport-sec

=JeffH <Jeff.Hodges@KingsMountain.com> Fri, 01 June 2012 17:36 UTC

Return-Path: <Jeff.Hodges@KingsMountain.com>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54FCA21F8A24 for <websec@ietfa.amsl.com>; Fri, 1 Jun 2012 10:36:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.495
X-Spam-Level:
X-Spam-Status: No, score=-100.495 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8jjiCMGVG6oZ for <websec@ietfa.amsl.com>; Fri, 1 Jun 2012 10:36:00 -0700 (PDT)
Received: from oproxy5-pub.bluehost.com (oproxy5.bluehost.com [IPv6:2605:dc00:100:2::a5]) by ietfa.amsl.com (Postfix) with SMTP id 6A0CE21F8A22 for <websec@ietf.org>; Fri, 1 Jun 2012 10:36:00 -0700 (PDT)
Received: (qmail 21929 invoked by uid 0); 1 Jun 2012 17:35:59 -0000
Received: from unknown (HELO box514.bluehost.com) (74.220.219.114) by cpoproxy2.bluehost.com with SMTP; 1 Jun 2012 17:35:59 -0000
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=kingsmountain.com; s=default; h=Content-Transfer-Encoding:Content-Type:Subject:To:MIME-Version:From:Date:Message-ID; bh=gSlQTVnh8NRk33qgWY9i8ii8hirfpA7QfnxCpTLIWFk=; b=JfITYWNBrwgXSCwgvgryqF2yaW76DBVioQMgSV+GuitK6YWI2HT4RaM0Ls8ehdh1s1vKA/mJSHYVSCh5XbKpbuMs3I8Vca4P0qKa4+Y6/U6xOax4muOIRo6TW2SZUpcJ;
Received: from [216.113.168.128] (port=10492 helo=[10.244.136.116]) by box514.bluehost.com with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.76) (envelope-from <Jeff.Hodges@KingsMountain.com>) id 1SaVlX-0006qt-Ce; Fri, 01 Jun 2012 11:35:59 -0600
Message-ID: <4FC8FD7F.3020200@KingsMountain.com>
Date: Fri, 01 Jun 2012 10:35:59 -0700
From: =JeffH <Jeff.Hodges@KingsMountain.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:12.0) Gecko/20120430 Thunderbird/12.0.1
MIME-Version: 1.0
To: "Murray S. Kucherawy" <msk@cloudmark.com>, Apps Discuss <apps-discuss@ietf.org>, IETF WebSec WG <websec@ietf.org>, draft-ietf-websec-strict-transport-sec@tools.ietf.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Identified-User: {11025:box514.bluehost.com:kingsmou:kingsmountain.com} {sentby:smtp auth 216.113.168.128 authed with jeff.hodges+kingsmountain.com}
Subject: Re: [websec] AppsDir review of draft-ietf-websec-strict-transport-sec
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Jun 2012 17:36:01 -0000

Hi, thanks for your review Murray, apologies for latency.

Nice to see you didn't find any major issues.

The most major obvious item in this review, concerning ABNF in section 6, was 
discussed on the list -- and then I neglected to submit a bug for the overall 
review feedback (sorry).

that's now done:

   HSTS: AppsDir Editorial comments
   http://trac.tools.ietf.org/wg/websec/trac/ticket/46

..and I'm working on -09 to incorporate your feedback and will reply to your 
msg on-list.


=JeffH