From 7a9fae02692ae1c040083ee8c98e7ab3ec36b999 Mon Sep 17 00:00:00 2001 From: tschmidtb51 <65305130+tschmidtb51@users.noreply.github.com> Date: Thu, 20 Feb 2025 10:50:39 +0100 Subject: [PATCH] DNS Domain - addresses review comment from oasis-tcs/csaf#868 - clarify that DNS resolves to IP address which has the webserver Co-authored-by: Stefan Hagen --- csaf_2.1/prose/edit/src/distributing.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/csaf_2.1/prose/edit/src/distributing.md b/csaf_2.1/prose/edit/src/distributing.md index 9ae33dba..6cf7c419 100644 --- a/csaf_2.1/prose/edit/src/distributing.md +++ b/csaf_2.1/prose/edit/src/distributing.md @@ -163,7 +163,7 @@ The use of the scheme "HTTPS" is required. See [cite](#RFC8615) for more details ### Requirement 10: DNS path Assuming that the organization's main domain is `domain.tld`, the DNS record `csaf.data.security.domain.tld` SHALL resolve -as a web server which serves directly the `provider-metadata.json` according to requirement 7. +to the IP address of a web server which serves directly the `provider-metadata.json` according to requirement 7. > The `domain.tld` is just a placeholder for the organization's main domain. > For the organization with the main domain being `example.com`, the necessary DNS record is `csaf.data.security.example.com`.