Hi Julien, Thanks for taking the time to check this!
On 07/03/2019 20:42, Julien ÉLIE wrote: > Hi Stephen, >> This version attempts to make the few changes discussed >> at the meeting on Monday. I wrote a script that gave me >> a list of 76(!) RFCs this might need to update, and may >> of course have mucked that up, so if anyone has a chance >> to check if (some of) those make sense, that'd be great. > > I believe updating RFC 4642 (TLS with NNTP) is useless because this RFC > has already been updated by RFC 8143. > > In RFC 8143: > > A.6. Related to Other Obsolete Wording > > The first two sentences of the seventh paragraph in Section 2.2.2 of > [RFC4642] are removed. There is no special requirement for NNTP with > regard to TLS Client Hello messages. Section 7.4.1.2 and Appendix E > of [RFC5246] apply. > > That is to say, the following sentences in RFC 4642 are no longer relevant: > > Servers MUST be able to understand backwards-compatible TLS Client > Hello messages (provided that client_version is TLS 1.0 or later), > and clients MAY use backwards-compatible Client Hello messages. > Neither clients nor servers are required to actually support Client > Hello messages for anything other than TLS 1.0. > > > > That's why I suggest draft-ietf-tls-oldversions-deprecate does not > update RFC 4642. It is no longer useful. > Are you OK with this analysis? Sorta:-) I think these are overlapping but not quite identical updates. E.g. IIUC 8143 doesn't say to not use TLSv1.1. I added the sentence below to the editor's copy [1], but happy to do something else if I'm wrong, which is entirely possible;-) "In the case of [RFC4642], that has already been updated by [RFC8143] which makes an overlapping, but not quite the same, update as this document." Cheers, S. [1] https://github.com/tlswg/oldversions-deprecate/blob/master/draft-ietf-tls-oldversions-deprecate.txt >
0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
