On Wed, Aug 7, 2019 at 7:29 PM Wessels, Duane wrote:
> Greetings DNSOP,
>
> AFAICT there was no feedback received after this most recent version of
> the ZONEMD draft was posted. As I mentioned before, there was one pretty
> significant change in that version:
>
> > The most significant change i
Hi Duane,
On 7 Aug 2019, at 19:29, Wessels, Duane
wrote:
> AFAICT there was no feedback received after this most recent version of the
> ZONEMD draft was posted. As I mentioned before, there was one pretty
> significant change in that version:
>
>> The most significant change is that multip
I agree with Joe's advice to limit the spec to what you need to
interoperate. It's a good idea to allow algorithm rollover, but I
don't think it's useful to try and guess how people might implement
it, or to try to invent a way to send back failure reports.
>NEW:
>
>4.1. Verifying Multiple Dige
On Aug 8, 2019, at 14:51, John Levine wrote:
> I agree with Joe's advice to limit the spec to what you need to
> interoperate. It's a good idea to allow algorithm rollover, but I
> don't think it's useful to try and guess how people might implement
> it, or to try to invent a way to send back fa
On Thu, 8 Aug 2019, Joe Abley wrote:
I don't see how that's a MUST. What else could you do?
One alternative would be for the receiver to insist that all digests
with supported algorithms match. It seems reasonable to specify that
verifying that one of them matches is sufficient to declare the
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Domain Name System Operations WG of the IETF.
Title : Serving Stale Data to Improve DNS Resiliency
Authors : David C Lawrence
This version addresses comments received during WGLC. The authors
have been trying to be diligent about addressing comments as they come
in (both on-list, and some in in-person conversations), and so there
weren't very many outstanding issues.
There are also implementations, and so experience show
Thanks John and Joe, does this text capture what you're suggesting?
4.1. Verifying Multiple Digests
If multiple digests are present in the zone, e.g., during an
algorithm rollover, a match using any one of the recipient's
supported Digest Type algorithms is sufficient to verify the zone
On Thu, 8 Aug 2019, Wessels, Duane wrote:
Thanks John and Joe, does this text capture what you're suggesting?
4.1. Verifying Multiple Digests
If multiple digests are present in the zone, e.g., during an
algorithm rollover, a match using any one of the recipient's
supported Digest Type a
On Aug 8, 2019, at 18:38, John R Levine wrote:
>
>> On Thu, 8 Aug 2019, Wessels, Duane wrote:
>>
>> Thanks John and Joe, does this text capture what you're suggesting?
>>
>> 4.1. Verifying Multiple Digests
>>
>> If multiple digests are present in the zone, e.g., during an
>> algorithm rollover
10 matches
Mail list logo
