On Apr 27, 2015, at 9:14 AM, Warren Kumari <[email protected]> wrote: > > Dear DANE WG, > > The authors of draft-ietf-dane-ops have indicated that they believe > that the document is ready, and have asked for Working Group Last Call > (actually, they requested this a while back, we'd delayed while doing > toe other docs...) > > The draft is available here: > https://datatracker.ietf.org/doc/draft-ietf-dane-ops/ > > Please review this draft to see if you think it is ready for > publication and send comments to the list, clearly stating your view. > > This WGLC ends Mon 11-May-2015.
Sorry for the late review. This document is large, but it is also quite important for DANE deployment. In fact, it is probably as important for DANE deployment as the original TLSA document was. I found only two substantial issues in the document (I am sending editorial nits to the authors). In Section 12, there is the question of whether or not the section is really useful. Yes, it is. For a long document such as this, an operator will want a checklist of changes from RFC 6698. In Section 13, there is no justification for why TLSA records for HTTP servers should have a TTL an order of magnitude shorter than those for SMTP servers, and I can't think of one. Proposal: suggest all TLSA records have a TTL of an hour. --Paul Hoffman _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
