<div dir="ltr">Forwarding this along if only because it suggests removing something rather than adding it.<div><br></div><div><div><br></div><div>The current BRs define "Authorized Port" as:</div><div><br></div><div>One of the following ports: 80 (http), 443 (http), 115 (sftp), 25</div><div>(smtp), 22 (ssh).</div><div><br></div><div><br></div><div>Port 115 appears to be on this list in error, because this port number</div><div>was assigned to an Internet protocol "Simple File Transfer Protocol"</div><div>that never saw widespread use, it is not the correct port for the SFTP</div><div>(SSH File Transfer Protocol) SSH subsystem of the SSH protocol which,</div><div>like SSH itself, uses well-known port 22.</div><div><br></div><div>Unless the committee which came up with these recommendations has a</div><div>separate rationale for listing port 115 it seems as though the ballot</div><div>to add domain validation methods is a good place to make this small</div><div>change, removing the text "115 (sftp)," from this definition.</div><div><br></div><div>I don't intend this proposal to have any effect operationally, it's</div><div>simply a suggestion to ensure the BR text matches the reality on the</div><div>ground more closely. If it proves controversial of course it should not</div><div>be included in Jeremy's ballot.</div></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Mar 22, 2017 at 11:43 AM, Jeremy Rowley via Public <span dir="ltr"><<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="EN-US" link="#0563C1" vlink="#954F72"><div class="m_461198138569281599WordSection1"><p class="MsoNormal">Sorry – I thought I’d incorporated those changes. I’ve gotten a couple other comments as well that I’ll merge into a new draft.<u></u><u></u></p><p class="MsoNormal"><a name="m_461198138569281599__MailEndCompose"><u></u> <u></u></a></p><span></span><div><div style="border:none;border-top:solid #e1e1e1 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b>From:</b> Robin Alden [mailto:<a href="mailto:robin@comodo.com" target="_blank">robin@comodo.com</a>] <br><b>Sent:</b> Wednesday, March 22, 2017 9:42 AM<span class=""><br><b>To:</b> 'CA/Browser Forum Public Discussion List' <<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>><br><b>Cc:</b> Jeremy Rowley <<a href="mailto:jeremy.rowley@digicert.com" target="_blank">jeremy.rowley@digicert.com</a>><br></span><b>Subject:</b> RE: [cabfpub] Revised domain validation ballot<u></u><u></u></p></div></div><div><div class="h5"><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal"><span lang="EN-GB">Hi Jeremy,<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB"> The text for the example of a request token has become mangled by copying and pasting over the years.<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB">It should read..<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB"> <u></u><u></u></span></p><p class="MsoNormal" style="margin-left:.5in"><span lang="EN-GB">echo `date -u +%Y%m%d%H%M` `sha256sum <r2.csr` | sed "s/[ -]//g"<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB">Those back-quotes need to be back-quotes.<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB"> <u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB">I see another item that I think needs attention. I don’t think it is contentious.<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB">The sentence is this one:<u></u><u></u></span></p><p class="MsoNormal"><span><u></u> <u></u></span></p><p class="MsoNormal" style="text-indent:.5in">“The presence of the Request Token or Random Value contained in the form of a meta tag where the Request Token or Random Value MUST NOT appear in the request.”<u></u><u></u></p><p class="MsoNormal" style="text-indent:.5in"><u></u> <u></u></p><p class="MsoNormal"><span lang="EN-GB">The problem is that the token or value mustn’t appear in the request, period. It doesn’t matter whether the token or value are in a meta tag in a page or in file content.<u></u><u></u></span></p><p class="MsoNormal">I think it should probably read<span><u></u><u></u></span></p><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal" style="text-indent:.5in"><span lang="EN-GB">“The Request Token or Random Value MUST NOT appear in the request for the file or web-page.”</span><u></u><u></u></p><p class="MsoNormal"><span lang="EN-GB"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="EN-GB">May we incorporate those changes?<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="EN-GB">Regards<br>Robin<u></u><u></u></span></p><p class="MsoNormal"><span lang="EN-GB"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="EN-GB"><u></u> <u></u></span></p><div style="border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt"><div><div style="border:none;border-top:solid #e1e1e1 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b>From:</b> Public [<a href="mailto:public-bounces@cabforum.org" target="_blank">mailto:public-bounces@<wbr>cabforum.org</a>] <b>On Behalf Of </b>Jeremy Rowley via Public<br><b>Sent:</b> 22 March 2017 09:59<br><b>To:</b> CA/Browser Forum Public Discussion List <<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>><br><b>Cc:</b> Jeremy Rowley <<a href="mailto:jeremy.rowley@digicert.com" target="_blank">jeremy.rowley@digicert.com</a>><br><b>Subject:</b> [cabfpub] Revised domain validation ballot<u></u><u></u></p></div></div><p class="MsoNormal"><span lang="EN-GB"><u></u> <u></u></span></p><p class="MsoNormal">Hi everyone, <u></u><u></u></p><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal">Attached is a proposed domain validation ballot that accomplishes three things:<u></u><u></u></p><p class="MsoNormal"><u></u> <u></u></p><ol style="margin-top:0in" start="1" type="1"><li class="MsoNormal" style="margin-left:0in">The ballot adds the domain methods removed by ballot 180-182 back into the BRs. <u></u><u></u></li><li class="MsoNormal" style="margin-left:0in">The ballot removes the “any other method’<u></u><u></u></li><li class="MsoNormal" style="margin-left:0in">The ballot revises the .well-known method to fix some issues identified by the WG<u></u><u></u></li><li class="MsoNormal" style="margin-left:0in">The ballot fixes an incorrect cross-reference. <u></u><u></u></li></ol><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal">Jeremy<u></u><u></u></p></div></div></div></div></div><br>______________________________<wbr>_________________<br>
Public mailing list<br>
<a href="mailto:Public@cabforum.org">Public@cabforum.org</a><br>
<a href="https://cabforum.org/mailman/listinfo/public" rel="noreferrer" target="_blank">https://cabforum.org/mailman/<wbr>listinfo/public</a><br>
<br></blockquote></div><br></div>