On Fri, Oct 16, 2020 at 1:06 PM tom petch <daedulus@xxxxxxxxxxxxx> wrote: > > And I get a bounce message for cyberstorm.mu > no AAAA record. > We are still sorting an issue with the .mu registrar. Meanwhile, I will upload a new version of the I-D with my gmail instead. > Tom Petch > > On 16/10/2020 09:56, tom petch wrote: > > I think that the first sentence could be improved. > > > > 'The MD5 and SHA-1 hashing algorithms are steadily weakening ...' sounds > > as if they are under attack from electrolytic corrosion or the > > death-watch beatle. > > > > I suggest > > NEW > > 'The MD5 and SHA-1 hashing algorithms are increasingly vulnerable to > > attack and this document deprecates their use in TLS 1.2 digital > > signatures.' > > > > And > > > > /This draft/This document/ > > > > Tom Petch > > > > On 14/10/2020 19:40, The IESG wrote: > >> > >> The IESG has received a request from the Transport Layer Security WG > >> (tls) to > >> consider the following document: - 'Deprecating MD5 and SHA-1 signature > >> hashes in TLS 1.2' > >> <draft-ietf-tls-md5-sha1-deprecate-04.txt> as Proposed Standard > >> > >> The IESG plans to make a decision in the next few weeks, and solicits > >> final > >> comments on this action. Please send substantive comments to the > >> last-call@xxxxxxxx mailing lists by 2020-10-28. Exceptionally, > >> comments may > >> be sent to iesg@xxxxxxxx instead. In either case, please retain the > >> beginning > >> of the Subject line to allow automated sorting. > >> > >> Abstract > >> > >> > >> The MD5 and SHA-1 hashing algorithms are steadily weakening in > >> strength and their deprecation process should begin for their use in > >> TLS 1.2 digital signatures. However, this document does not > >> deprecate SHA-1 in HMAC for record protection. This document updates > >> RFC 5246 and RFC 7525. > >> > >> > >> > >> > >> The file can be obtained via > >> https://datatracker.ietf.org/doc/draft-ietf-tls-md5-sha1-deprecate/ > >> > >> > >> > >> No IPR declarations have been submitted directly on this I-D. > >> > >> > >> > >> > >> > >> _______________________________________________ > >> IETF-Announce mailing list > >> IETF-Announce@xxxxxxxx > >> https://www.ietf.org/mailman/listinfo/ietf-announce > >> . > >> > > > > -- > last-call mailing list > last-call@xxxxxxxx > https://www.ietf.org/mailman/listinfo/last-call -- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
