►
From YouTube: IETF-TOOLS-20221011-1800
Description
TOOLS meeting session at IETF
2022/10/11 1800
https://datatracker.ietf.org/meeting//proceedings/
A
B
C
C
All
right,
the
join
rate
is
slowing
down,
so
we'll
go
ahead
and
start
in
the
first
thing
I'd
like
to
bring
up
is
how
we're
going
to
approach
doing
the
meeting
based
on
what
we
tried
last
time
and
the
feedback
that
we
got
from
Eric
I
am
planning
to
go
through
the
topics
that
are
listed
under
hot
topics
for
discussion
and
detail,
the
rest
of
it.
We
will
just
point
out
section
by
section
as
we're
going
along
and
give
people
a
few
moments
to
scan
in
real
time.
C
In
case
there
was
information
added
since
the
last
time.
They
read
the
notes,
but
not
necessarily
read
through
each
of
them
take
basically
taking
most
of
that
text
as
read.
C
So
if
you
know
that
there
is
something
that's
currently
not
in
the
Hot
Topic
section
that
you
know
for
sure
you
want
to
talk
about
when
we
get
to
that
part
of
the
call
be
sure
to
to
say,
hey
I
want
to
talk
about
this
thing
down
here
and
I'll
remind
everybody
that
this
is
an
editable
web
page
and
I'm
happy
to
have
anybody
at
it
at
any
time.
C
All
right
first
thing
that
I
want
to
jump
into
is
the
what
we're
going
to
do
for
November.
Currently,
the
tools
call
is
scheduled
in
conflict
with
some
meeting
sessions,
I
think
or
maybe
it
moves
into
dinner
of
the
ietf
week.
I
suspect
that
that's
not
what
we
want
to
do.
I
know
we're
going
to
probably
have
several
side
meetings
related
to
tools
during
the
week.
Do
we
want
to
have
a
tools
team
call
the
week
after
or
do
we
skip
November
and
just
wait
for
December's
call.
C
A
Don't
object
to
that
the
remote
people
it
might
be
easier
for
them
to
with
weird
time
zones.
It
might
be
easier
for
them
to
pick
to
attend
that
piece,
but
yeah
I
don't
have
a
problem
with
we're
now
doing
code
sprinting
with
the
hackathon
again.
C
In
a
separate
room
at
the
moment,
just
because
of
the
noise.
A
A
So
I
I
would
be
happy
to
pick
up
and
change
rooms
for
half
an
hour.
That
would
be
fine
if,
if
that's
an
important
thing
to
do,
I
don't
know
I'm
I
agree
with
you.
Robert
that
probably
deferring
by
a
week
doesn't
help
people
that
want
to
want
to
break
and
probably
just
go
for
December
meeting
yeah.
C
Okay
and
we'll
take
a
look
at
putting
an
explicit
half
hour
for
a
group
discussion
and
making
sure
that
we
advertise
for
remote
attendees
that
we'll
be
talking
about
stuff
during
the
code,
Sprint
and
I'll
work
out.
What
time
during
the
code,
Sprint
makes
the
most
sense
I
think
allowed
the
most
remote
participants
to
attend.
C
People
have
seen
the
note
that
went
to
tools
discussed
about
our
infrastructure
strategy,
going
forward
how
we're
Talent,
where
we're
going
to
run
our
services
and
the
models
that
we're
going
to
evolve
to
we
requested
that
feedback
arrive
before
this
call.
We
didn't
get
a
great
deal
of
feedback.
A
few
people
commented
and
I
believe
that
their
comments
are
already
incorporated
into
the
document.
C
C
C
Some
of
the
principles
that
the
document
calls
out
until
later
so
clearly
there's
still
a
lot
of
detail
level
information
that
we
need
to
pull
together,
but
as
a
framework
for
how
we're
going
to
move
forward.
I
am
guessing
that
people
are
happy
with
what
they're
seeing
Jay
do
you
need
anything
from
anybody.
B
No
I'm
quite
good
with
all
the
things
that
people
have
done
so
far.
I
just
need
to
incorporate
fully
the
comments
if
people
are
otherwise
Happy
I'm
ready
to
basically
call
this
done
and
start
to
work
on
with
you
on
one
or
more
rfps
for
delivery
around
this
yeah.
C
Team
workshop,
based
on
the
survey
that
we
sent
around
the
one
that
we
should
focus
on
first,
is
how
we
publish
documents
on
the
internet,
particularly
rfcs
and
internet
drafts,
but
including
all
things
like
meeting
materials
and
photos
and
all
of
these
other
things
right
so
I,
unless
somebody
who's
got
a
reason
not
to
I'm
going
to
Target
the
first
two
weeks
of
December
for
this
I'm
talking
with
Alexis
already
on
building
out
a
set
up
questions
that
we
can
use
to
drive
the
conversation
during
the
workshop
point
of
the
workshop
will
be
to
grow,
mind
chair
and
just
get
input
into
what
we
should
do,
the
we're
expecting
that
the
topics
will
Encompass
everything
from
the
idea
of
a
a
single
place
that
has
all
of
these
documents
with
very
short
ul's
to
get
to
them.
C
C
Do
these
things
just
give
you
document
content,
or
do
they
give
you
a
metadata
page
or
do
they
give
you
both
I
know
that
some
of
these
conversations
are
also
on
cue
for
possible
rswg
work,
so
the
Commerce
any
conversation
we
have
here
that
gets
into
the
policies
that
the
rswg
would
be
responsible
for
would
just
turn
into
input
into
the
rswg
conversation.
C
C
Not
hearing
anything
I
just
wanted
to
report
on
a
couple
of
things
that
happened
early
part
of
last
week
we
had
someone
report
that
we
had
an
open
redirect
point.
It
turns
out
that
that
open,
redirect
Point
had
been
available
for
probably
a
decade.
C
As
far
as
we
could
tell
from
the
logs
that
we
have
that,
don't
go
at
back
a
decade.
They
only
go
back
a
few
weeks.
It
hasn't
been.
It
was
not
exploited
during
that
time.
So
we
closed
the
redirect
with
a
patch.
The
next
redirect
will
completely
remove
it.
The
basic
details
of
where
it
crept
in
was
at
the
Port,
the
original
Port
of
the
Pearl
iesg
tracker
into
Django.
C
We
built
a
piece
of
middleware
that
would
strip
the
a
trailing
period
off
of
a
URL,
and
we
believed
that
this
went
in
like
I
said
over
a
decade
ago,
in
order
to
make
some
of
the
Legacy
Pearl
URLs
from
that
Old
instance
continue
to
work
properly,
but
the
way
it
was
implemented,
it
bypassed
the
rest
of
the
Django
stack
at
the
protection
against
becoming
an
open
redirect
service,
and
our
fix
was
to
just
remove
that
piece
of
metalware
from
the
stack.
A
C
We
also
had
an
issue
with
our
role-based
Access
Control
mechanism
thing
we
decorate
functions
with
to
say
you
have
to
be
a
member
of
the
Secretariat
or
a
working
group
chair
or
a
whatever
to
do
food
to
this
group.
C
It
had
an
edge
case
that
it
dealt
improperly
with
not
having
any
Target
roles
in
the
list
of
things
that
it
might
try
to
match
against
it
failed
open.
It
shouldn't
have
that's
been
fixed.
Somebody
found
it.
They
created
an
account
to
deface
the
one
group
that
presented
a
situation
where
there
weren't
any
roles
to
match
against,
and
that
was
the
group
that
we
hang
individual
submission
drafts
off
of
the.
C
Hole's
been
fixed,
the
code's
been
fixed.
There
is
still
a
question
about
how
much
cleanup
we
do
of
the
history
of
that
group.
Now
there
are
some
group
events
that
I
suggest
that
we
delete
because
they
contain
just
the
text
of
the
defacement.
It's
not
particularly
offensive
text,
but
the
who
knows
what
it's
a
key
for.
C
Lars,
when
I
brought
this
up
mentioned
that
he
would
have
been
happier
if
we
had
nudged
the
isg
when
we
saw
this
happening
so
I
don't
know
if
we've
got
anyone.
C
A
That'll
be
nice,
and
this
time
it
really
didn't
matter
so
much
because
there
wasn't
an
outage
or
anything
right.
But
if
something
gets
discovered
that
would
actually,
you
know,
affect
data
trigger
availability
or
functionality,
be
very
nice
if
the
isgu
that
so
that
you
could
deal
with
the
results
of
the
Fallout.
C
Okay,
so
my
next
I
am
here:
Mary
Barnes
reported
that
she
had
some
link
found
some
links
and
some
old
email
from
the
Nom
come
that
she
chaired
most
recently
that
did
not
work
anymore.
C
Digging
around
and
investigating
I
found
that
the
information
that
she
was
missing
was
served
off.
Henrik's
tool,
servers
by
handcrafted
Pages,
there's
an
example
of
one
of
those
pages
from
the
the
internet
archive
Linked
In
the
text
from
the
notes
here,
so
you
can
see
what
they
look
like
the
archive
did
not
get
all
of
them,
so
we
can't
go
to
that
to
discrete
to
get
that
information
back.
C
Henrik
has
confirmed
that
he
does
not
have
that
information
anymore.
It
was
cleaned
away
after
we
moved
the
capability
for
the
nom-coms
to
keep
their
public
facing
information
in
the
data
tracker,
so
that
should
a
non-com
ever
need
to
have
all
of
its
information
removed.
There
was
only
one
place
to
remove
it,
so
that
information
was
just
lost
at
that
time.
It's
gone
and
I
don't
think
that
there
is
any
any
way
to
recover
it.
So
there's.
C
We
could
spend
some
effort
going
through
what
we
could
find
in
the
internet
archive
for
the
the
few
pages
that
it
did
capture
and
backfill
those
into
some
of
these
older
non-coms.
But
I
don't
know
if
the
the
return
for
the
effort
that
goes
in
is
high
enough
to
actually
go
through
go
through
the
process.
B
So
well,
but
I
thought
at
one
point:
we
had
Glenn
archive
as
much
as
he
could
see
on
those
servers.
So
Glenn
were
you
able
to
get
that
partic?
Those
particular
pages.
C
It's
unlikely
we
can
get
Glenn
to
go.
Look
but
I
think
that
the
time
that
Henrik
removed
the
information
from
tools.iatf.org
was
many
years
ago.
C
B
C
C
All
right,
the
next
thing
I've
got,
is
a
short
conversation
around
authenticating
with
IMAP.
We
in
the
process
of
attempting
to
add
a
feature
that
would
allow
us
to
map
user
identities
at
the
IMAP
server.
So
if
somebody
changed
their
data
tracker
account
login
to
a
different
login
stream,
the
configuration
that
they
had
that
the
IMAP
server
could
follow
along.
C
We
restarted
the
the
service
and
discovered
that
it
didn't
start
and
it
didn't
start
because
I
had
removed
the
Python
2.7
copy
of
the
data
tracker
that
we
had
running
around
that
I
had
thought
was
only
there
to
support.
Mailman
integration
turns
out
that
auth
P
off
PD
was
using
it
as
well.
C
The
rest
of
what
I've
got
on
the
agenda
I
am
planning
to
mostly
do
a
take
as
read
just
at
a
very
high
level,
we're
working
on
adding
using
cloudflare
streaming
service.
In
addition,
what
we
have
for
YouTube
to
reach
a
greater
part
of
the
world,
that's
a
work
in
progress.
C
The
FTP
Service
has
finally
been
configured
to
not
serve
anything,
but
the
tombstone
file
and
usage
has
dropped
to
zero.
People
have
seen
the
announcement
to
the
lists
about
when
we're
going
to
turn
off
the
well.
We've
already
turned
off
the
email
list,
bridging
in
the
zoo,
open,
remove
the
copies
of
the
archives
that
are
in
Zulu.
That's
completely
done
the
we're
still
working
on
the
final
things
that
we
want
to
do
to
ID
diff.
C
C
We
had
two
patch
Coast
post,
confirmed.
I
should
have
moved
this
up
into
the
actual
talk
about
it.
Part
of
the
section
we
had
to
patch
post
confirm
because
Google
became
more
aggressive
about
enforcing
their
interpretation
of
what
was
in
RSC
5388
headers
that
use
the
multiple
versions
of
having
the
header
field
name.
Two
food,
two
bar
two
baths
Google
now
just
rejects
the
spam.
C
They
will
only
accept
two
food,
comma
bar,
comma,
baz
and
post
confirm
was
doing
it
a
different
way,
easy
to
fix,
but
in
the
process
of
patching
it,
we
it
reminded
me
that
the
install
that
we
have
in
production
right
now
was
installed
by
hand
not
through
any
packaging
system.
Even
though
there
is
something
sitting
out
on
Pi
Pi,
what's
sitting
out
on
pie
pie
is
not
what
we're
running
in
production.
What
we
have
at
GitHub
is
what
is
on
production.
C
We
need
to
go
through
building
out
the
the
infrastructure
to
make
a
release
that
we
can
install
as
a
package,
because
I
had
to
go
in
and
install
this
patch
into
the
system.
Library
System
python
libraries
basically
by
hand
it's
also
Python
2.7
specific,
because
it's
part
of
the
mailman
chain
right
now
and
when
we
go
to
mailman
3,
it's
going
to
have
to
be
Rewritten
in
Python
3,
either
ported
or
or
Rewritten.
C
Hopefully,
people
have
had
a
chance
to
read
the
bit
about
non-com
eligibility
calculations.
We've
just
done
some
improvements.
There
we're
in
the
process
of
adding
a
little
bit
more
guts
and
conversations
happening
on
with
Jay
and
Lars
about
how
to
count
people
that
are
registered
in
two
different
ways.
C
We've
moved
wiki.ietf.org
behind
cloudflare
the
getting
the
auto-generated
cert
in
place
at
cloudflare
took
a
lot
longer
than
we
expected
when
we
did
this
last
Friday,
when
we
moved
chairs
and
authors
we're
going
to
proceed
differently
so
that
the
honor
that
automatically
generated
certificates
in
place
before
we
try
to
move
real
traffic
over
to
it.
C
C
Going
to
say
the
same
thing
about
bib
XML,
the
author
tools,
the
Whitetail
website,
nxmlrsc
and
mail
archive
and
Ying
catalog.
So
hopefully,
everybody's
read
through
this
before
and
would
have
had
any
questions
ready.
But
I'll
give
it
a
couple
of
minutes
for
people
to
skim
through
if
they
haven't
seen
it
or
in
before.
They
got
to
the
call.
A
Right
the
problem
with
the
foreign
XML:
when
is
that
going
to
get
deployed
the
fix.
C
Off
the
top
of
my
head,
I
can't
say:
I
will
follow
up
with
you
and
find
where
that
is
in
in
the
pipeline
and
know
that
we've
got
a
series
of
changes
that
ribose
has
made
that
are
queued
up
for
merging
to
be
deployed.
So
it
may
be
fixed
in
one
of
those.
A
C
Now
I
do
want
to
move
in
the
long
run
and
got
I
sent
the
the
note
n
to
the
our
swag
that
we
need
to
get
out
of
the
game
of
trying
to
tear
names
apart
and
just
have
blobs
and
be
done.
So.
C
I
mentioned
earlier
that
the
we're
working
on
getting
this
ability
to
map
IMAP
users
in
place-
it's
not
working
yet,
but
we
expect
it
we'll
have
it
working
before
we
get
to
ietf
115..
C
There
is
a
conversation.
That's
been
started.
It
was
triggered
by
noticing
that
our
DNS
SEC
records
for
the
ietf.org
domain
are
using
the
crypto
algorithms
that
are
no
longer
recommended.
We
started
a
conversation
about
how
we
would
change
that
to
move
what
is
currently
recommended.
C
It
has
expanded
to
include
how
we
serve
DNS
SEC
altogether
and
right
now
we
have
a
a
proposal
that
we're
working
with
to
move
all
of
our
DNS
services
to
cloudflare
and
perform
the
algorithm
configuration
changes
once
we're
once
we're
at
cloudflare
I'm,
expecting
we'll
start
taking
steps
on
that
again
likely
after
ietf
115
be
between
115
and
116..
C
This
is
the
last
time
that
we're
getting
together
as
a
group
before
we
get
to
ATF
115
I,
look
forward
to
seeing
any
of
the
rest
of
you
that
are
going
to
be
attending
in
person.
C
C
C
A
So
I
I
wasn't
here
last
time,
so
I
don't
know
what
happened
last
time
right,
but
I'm
not
sure.
If
I
got
so
much
more
information
than
just
reading,
the
notes-
I
don't
know,
maybe
focus
on
the
things
that
actually
need
discussion
makes
sense.