Re: [xmpp] Fwd: I-D Action: draft-miller-xmpp-dnssec-prooftype-03.txt
Simon Tennant <simon@buddycloud.com> Wed, 13 February 2013 14:02 UTC
Return-Path: <simon@buddycloud.com>
X-Original-To: xmpp@ietfa.amsl.com
Delivered-To: xmpp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E84DD21F86F5 for <xmpp@ietfa.amsl.com>; Wed, 13 Feb 2013 06:02:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.976
X-Spam-Level:
X-Spam-Status: No, score=-2.976 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wOIwTlsUlw2s for <xmpp@ietfa.amsl.com>; Wed, 13 Feb 2013 06:02:38 -0800 (PST)
Received: from mail-wi0-f175.google.com (mail-wi0-f175.google.com [209.85.212.175]) by ietfa.amsl.com (Postfix) with ESMTP id 0A3DE21F86F4 for <xmpp@ietf.org>; Wed, 13 Feb 2013 06:02:18 -0800 (PST)
Received: by mail-wi0-f175.google.com with SMTP id l13so5721958wie.14 for <xmpp@ietf.org>; Wed, 13 Feb 2013 06:02:18 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:x-originating-ip:in-reply-to:references :date:message-id:subject:from:to:cc:content-type:x-gm-message-state; bh=/DYUgcpfYoYWYf63b5INf6UsNqX6etxs0tTTzQher+0=; b=LP8ZRMv/4nCvHehAeql3ZThQTPl1AcrrJOIGAj07+Z7HkbqoeizN1AahVcJITOwMer X/+c23HuCqQaoHUJ9vtrUKAlfMb8yKu4xGdqlDzDESubjYUlg1hFVZjmO5F3ifyzjZke C8nKjjWahh8TcCcmZvRYXD7xC1imZ3QtKXwtrjhqaj0rROKu4rGa3tOp/ekGlih3hgUc xf6yL9SJqGrwse2/6gt+dZcqAReL5EgKkomzB/LNZvSUN4NI1B9BXHzP+K6COrMKvyhO pjwfxBpHn5lrNowX9L808sdTcnOE1A1HWO7YeX4eSSNxqs6CkvGJh/wrWUWKunSQWTpw hR/w==
MIME-Version: 1.0
X-Received: by 10.194.76.7 with SMTP id g7mr38483122wjw.50.1360764129137; Wed, 13 Feb 2013 06:02:09 -0800 (PST)
Received: by 10.216.243.140 with HTTP; Wed, 13 Feb 2013 06:02:08 -0800 (PST)
X-Originating-IP: [194.127.8.20]
In-Reply-To: <50EF71A4.1050606@stpeter.im>
References: <20130110184432.5134.57184.idtracker@ietfa.amsl.com> <50EF71A4.1050606@stpeter.im>
Date: Wed, 13 Feb 2013 15:02:08 +0100
Message-ID: <CACEE+iPix6zGpFDC0KAOyR+33_2wdzPtyiFTDn7di7-T6vZKqw@mail.gmail.com>
From: Simon Tennant <simon@buddycloud.com>
To: XMPP Working Group <xmpp@ietf.org>
Content-Type: multipart/alternative; boundary="047d7beba2028a562c04d59b9646"
X-Gm-Message-State: ALoCoQmziGNVrnEjA28T6K86gAysJChnakc1m5aMBX21axaxSZB7BmDjSSc9foysXSaU4e/gUhT0
Cc: Florian Jensen <florian@florianjensen.com>
Subject: Re: [xmpp] Fwd: I-D Action: draft-miller-xmpp-dnssec-prooftype-03.txt
X-BeenThere: xmpp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: XMPP Working Group <xmpp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/xmpp>, <mailto:xmpp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xmpp>
List-Post: <mailto:xmpp@ietf.org>
List-Help: <mailto:xmpp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xmpp>, <mailto:xmpp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Feb 2013 14:02:40 -0000
I've been chatting with Florian about this the two standards for proving ownership in the case of a delegating domain hosting. Some background: Florian hosts many XMPP domains and at buddycloud, we're putting plans in place to host XMPP domains. In both cases, the more we have to ask customers to configure on their end, the less chance there is of a successful deployment. Right now this is: a) customer edits their DNS and point it at our servers. Nothing else. I have huge concerns about expecting customers to provide proofs at the web layer. Especially something that runs on their "main" website. Some reasons off the top of my head: a) Messaging team is different to web team - slow or no deployment. b) no website hosted on their domain - do we now host web stuff too? c) their website is created or hosted by their marketing agency / some other less technical. A simple website push could overwrite their .well-known record could kill their messaging service. d) it's complicated. DNSSEC is being rolled out. Sure some registrar and TLDs will take longer to deploy, but in the long term, I think this is the right way to have customers (especially non-technical customers who would rather delegate hosting) delegate their hosting. S. On 11 January 2013 02:57, Peter Saint-Andre <stpeter@stpeter.im> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Just a small update to reflect publication of RFC 6698... > > Peter > > - -------- Original Message -------- > Subject: I-D Action: draft-miller-xmpp-dnssec-prooftype-03.txt > Date: Thu, 10 Jan 2013 10:44:32 -0800 > From: internet-drafts@ietf.org > Reply-To: internet-drafts@ietf.org > To: i-d-announce@ietf.org > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > > > Title : Using DNS Security Extensions (DNSSEC) and > DNS-based Authentication of Named Entities (DANE) as a Prooftype for > XMPP Domain Name Associations > Author(s) : Matthew Miller > Peter Saint-Andre > Filename : draft-miller-xmpp-dnssec-prooftype-03.txt > Pages : 7 > Date : 2013-01-10 > > Abstract: > This document defines a prooftype that uses DNS-based Authentication > of Named Entities (DANE) for associating a domain name with an XML > stream in the Extensible Messaging and Presence Protocol (XMPP). It > also defines a method that uses DNS Security (DNSSEC) for securely > delegating a source domain to a derived domain in XMPP. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-miller-xmpp-dnssec-prooftype > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-miller-xmpp-dnssec-prooftype-03 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-miller-xmpp-dnssec-prooftype-03 > > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft<https://www.ietf.org/mailman/listinfo/i-d-announceInternet-Draft>directories: > http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG/MacGPG2 v2.0.18 (Darwin) > Comment: Using GnuPG with undefined - http://www.enigmail.net/ > > iEYEARECAAYFAlDvcaQACgkQNL8k5A2w/vxOswCfSD5OrV7Fgj0gkgrFaBfroWks > HWAAn0hwNNsP0pPiX+lRwoz0sEEHj53X > =8YV7 > -----END PGP SIGNATURE----- > _______________________________________________ > xmpp mailing list > xmpp@ietf.org > https://www.ietf.org/mailman/listinfo/xmpp > -- Simon Tennant | buddycloud.com | +49 17 8545 0880 | office hours: goo.gl/ tQgxP
- [xmpp] Fwd: I-D Action: draft-miller-xmpp-dnssec-… Peter Saint-Andre
- Re: [xmpp] Fwd: I-D Action: draft-miller-xmpp-dns… Simon Tennant
- Re: [xmpp] Fwd: I-D Action: draft-miller-xmpp-dns… Philipp Hancke
- [xmpp] Questions on POSH (WAS: Fwd: I-D Action: d… Matt Miller (mamille2)
- Re: [xmpp] Questions on POSH (WAS: Fwd: I-D Actio… Peter Saint-Andre
- Re: [xmpp] I-D Action: draft-miller-xmpp-dnssec-p… Florian Jensen
- Re: [xmpp] Questions on POSH (WAS: Fwd: I-D Actio… Florian Jensen