On Sep 22, 2010, at 10:09 AM, Peter Saint-Andre wrote: > 2. A human user has explicitly agreed to trust a service that > provides mappings of source domains to target domains, such as a > dedicated discovery service or an identity service that securely > redirects requests from the source domain to a target domain > (however, such an arrangement is not encouraged and if a client > supports such a service then it needs to disable it by default > and carefully warn the user about the possible negative > consequences of trusting such a service). Pure wordsmithing. Make sure this still says what you want: 2. A human user has explicitly agreed to trust a service that provides mapping of source domains to target domains. For example the user may trust a dedicated discovery service or identity service that securely redirects requests from the source to a target domain. Such an arrangement is not encouraged. If a client supports such a service then it needs to disable it by default, and it MUST carefully warn the user about the possible negative consequences of trusting such a service. ------------------------------------------------------ The opinions expressed in this message are mine, not those of Caltech, JPL, NASA, or the US Government. Henry.B.Hotz@xxxxxxxxxxxx, or hbhotz@xxxxxxx _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf