: draft-ietf-uta-rfc6125bis@ietf.org; uta@ietf.org
主题: Re: [Uta] Opsdir early review of draft-ietf-uta-rfc6125bis-08
On Tue, Dec 20, 2022, at 14:00, Qin Wu wrote:
> If we can introduce long prefix match like mechanism to deal with
> multiple level of subdomain matching, this issue will be
On Tue, Dec 20, 2022, at 14:00, Qin Wu wrote:
> If we can introduce long prefix match like mechanism to deal with
> multiple level of subdomain matching, this issue will be easily solved.
This is not something that the IETF can do at this stage - or at least not so
simply. Wildcard certificates
Hi, Peter:
I think the root cause of this wildcard certificate issue you described below
is
Wildcard only covers one level of subdomains, instead of multiple level of
subdomains,
If we can introduce long prefix match like mechanism to deal with multiple
level of subdomain matching, this issue w
On 12/19/22 11:18 AM, Peter Saint-Andre wrote:
On 12/19/22 12:33 AM, Qin Wu wrote:
7.Section 7.1
I am surprised there is no protection measures to mitigate risk of
vouching for rogue or buggy hosts in this document?
It seems to me that methods for mitigating the attacks described in
[Defeatin
On 12/19/22 12:33 AM, Qin Wu wrote:
7.Section 7.1
I am surprised there is no protection measures to mitigate risk of
vouching for rogue or buggy hosts in this document?
It seems to me that methods for mitigating the attacks described in
[Defeating-SSL] and [HTTPSbytes] are probably out of scop
>> 7.Section 7.1
>> I am surprised there is no protection measures to mitigate risk of
>> vouching for rogue or buggy hosts in this document?
>
> It seems to me that methods for mitigating the attacks described in
> [Defeating-SSL] and [HTTPSbytes] are probably out of scope for this document.
>
On 12/17/22 6:40 AM, Qin Wu wrote:
Hi, Peter:
-邮件原件-
发件人: Peter Saint-Andre [mailto:stpe...@stpeter.im]
发送时间: 2022年12月17日 6:51
收件人: Qin Wu ; ops-...@ietf.org
抄送: draft-ietf-uta-rfc6125bis@ietf.org; uta@ietf.org
主题: Re: Opsdir early review of draft-ietf-uta-rfc6125bis-08
Hello and tha
Hi, Peter:
-邮件原件-
发件人: Peter Saint-Andre [mailto:stpe...@stpeter.im]
发送时间: 2022年12月17日 6:51
收件人: Qin Wu ; ops-...@ietf.org
抄送: draft-ietf-uta-rfc6125bis@ietf.org; uta@ietf.org
主题: Re: Opsdir early review of draft-ietf-uta-rfc6125bis-08
Hello and thanks for the early review.
I've prov
Hello and thanks for the early review.
I've provided a few comments inline.
On 12/16/22 4:09 AM, Qin Wu via Datatracker wrote:
Reviewer: Qin Wu
Review result: Has Nits
I have reviewed this document as part of the Operational directorate's ongoing
effort to review all IETF documents being proce
