J.D. Falk wrote:
...but not for the reasons the anti-ADSP folks keep bringing up.
DKIM is failing because every discussion about actually /using/
DKIM inevitably gets stuck in the same old argument about ADSP.
Should you tell you something. Ignorance doesn't work either.
Doesn't even matter what the argument is about anymore; it stops
all forward progress every time. And we keep letting it happen --
actively participating, even, including me.
The problem was that we allowed an author who never believed in policy
to take over SSP, removed all the 3rd party considerations and renamed
it ADSP. But he thought that would kill all the 3rd party signer issues.
Continuing to argue these same points over and over is disrespectful
of our colleagues both on and off this list, and of the IETF process.
So what you really asking if POLICY in general should be throw out,
disrespecting all that that believe it would be useful?
So I'm going to stop, and I beg you all to join me.
And this this has been the problem, shut policy advocates using
Consensus by Osmosis - that hasn't worked either, maybe it should tell
you something.
Stop arguing, and start writing drafts.
We did. DSAP and TPA and SSP was written. Policy opponents killed
those efforts. Two RFC standards were written for the Policy
functional requirements and Threads Analysis which included Policy
considerations. Policy opponents killed those which to ignore the
security concerns with unrestricted resigners.
The issue it doesn't go away.
Murray drafted the MLM I-D and that still isn't acceptable by the
policy opponents.
Let us discuss the drafts instead of attacking each
others' intractable positions for the Nth time.
You promise not to attack Policy Advocates if they reintroduce new or
rehash 3rd party signer protocol I-Ds?
Yes, I know it requires more effort, but what we've been doing
so far clearly isn't working.
That I agree - opening minds on 3rd party signing issues might help,
or perhaps getting a new editor for ADSP to fix its bugs might work too.
Either way, you have to open your mind on POLICY otherwise it is a
waste of time, but the issues don't go away.
Moving DKIM to experimental status might work too until we figure out
how to add a protocol protection security layer to it. It doesn't
have one.
--
Hector Santos, CTO
http://www.santronics.com
http://santronics.blogspot.com
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html