Re: [Acme] tls-alpn-01 spec: TLS-SNI history
Ryan Sleevi <ryan-ietf@sleevi.com> Wed, 20 June 2018 12:45 UTC
Return-Path: <ryan-ietf@sleevi.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4005A130E5A for <acme@ietfa.amsl.com>; Wed, 20 Jun 2018 05:45:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sleevi.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZO8X5-eZMkZO for <acme@ietfa.amsl.com>; Wed, 20 Jun 2018 05:45:49 -0700 (PDT)
Received: from homiemail-a74.g.dreamhost.com (homie-sub4.mail.dreamhost.com [69.163.253.135]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B5C62127332 for <acme@ietf.org>; Wed, 20 Jun 2018 05:45:49 -0700 (PDT)
Received: from homiemail-a74.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a74.g.dreamhost.com (Postfix) with ESMTP id 2E3CDA00492E for <acme@ietf.org>; Wed, 20 Jun 2018 05:45:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sleevi.com; h=mime-version :in-reply-to:references:from:date:message-id:subject:to:cc :content-type; s=sleevi.com; bh=M3Tq3OEd80d/W7uJe6uQDk8ioMc=; b= iblLKw463rhvB4Z7IGQSjAIfpLu1siwsEtQaUeaV4uABWQZET3xJCok3vrLGh0mF lK6zAi35j4ByrgvDjeIIdx/X0MChczNMlsE/ptyNNwNFnVoJ9SwfTSW2opKEd2J1 xZWn6r16P0eRHp472rl0t5IYQD3i1bvg06On++lnw60=
Received: from mail-io0-f173.google.com (mail-io0-f173.google.com [209.85.223.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: ryan@sleevi.com) by homiemail-a74.g.dreamhost.com (Postfix) with ESMTPSA id 18809A00492D for <acme@ietf.org>; Wed, 20 Jun 2018 05:45:49 -0700 (PDT)
Received: by mail-io0-f173.google.com with SMTP id k3-v6so3328397iog.3 for <acme@ietf.org>; Wed, 20 Jun 2018 05:45:49 -0700 (PDT)
X-Gm-Message-State: APt69E1ukH2z0uW6vOuc5VMgLCWvE8F+l8owbKHg56m+AiXy237rSSz7 ppT+N2aEoxYxY9bygBkIc2clWj1DJVGH00aXLpM=
X-Google-Smtp-Source: ADUXVKKuWB8BYxkYGdcSq4Ojfyd+fKPvIjPKlzk+Zog+ZSWna5QlsNn6Yla+nzes7+mAP6zNn118l7Y5s22U7Sw4Nhs=
X-Received: by 2002:a5e:d703:: with SMTP id v3-v6mr18061935iom.78.1529498748553; Wed, 20 Jun 2018 05:45:48 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a02:986a:0:0:0:0:0 with HTTP; Wed, 20 Jun 2018 05:45:48 -0700 (PDT)
In-Reply-To: <20180620093445.GA23561@LK-Perkele-VII>
References: <4A77AEB5-0982-47C2-86AC-BD99D8D9E6F3@felipegasper.com> <20180620093445.GA23561@LK-Perkele-VII>
From: Ryan Sleevi <ryan-ietf@sleevi.com>
Date: Wed, 20 Jun 2018 08:45:48 -0400
X-Gmail-Original-Message-ID: <CAErg=HE+5_jdzOTw=UkStM7a9eWtA67dT=DGPT5-9wZ9tY9gtQ@mail.gmail.com>
Message-ID: <CAErg=HE+5_jdzOTw=UkStM7a9eWtA67dT=DGPT5-9wZ9tY9gtQ@mail.gmail.com>
To: Ilari Liusvaara <ilariliusvaara@welho.com>
Cc: Felipe Gasper <felipe@felipegasper.com>, ACME WG <acme@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000979475056f122d04"
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/itzGAaRrfl4ER2D2fJgXn_c9duQ>
Subject: Re: [Acme] tls-alpn-01 spec: TLS-SNI history
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jun 2018 12:45:51 -0000
On Wed, Jun 20, 2018 at 5:34 AM, Ilari Liusvaara <ilariliusvaara@welho.com> wrote: > > My understanding was that catastrophic problem was not the default- > vhost behavior of Apache or Nginx, altough that could casue security > issues. But instead, the problem was that many hosting provoders let > one claim arbitrary hostnames on FCFS basis. This let attacker upload > arbitrary validation certificates to be served, and due to how TLS-SNI > worked, this lead to misvalidation. > This is correct, although it was not necessarily dependent on FCFS behaviour - the issue would still exist because there was no implicit or explicit binding between the ACME challenge name and the name being validated in the protocol. That, combined with service providers reliance on DNS to resolve conflicts, lead to these issues. I'm not aware of any of the issues that were responsibly disclosed to browser vendors having been related to Apache configuration. > TLS-ALPN addresses the latter problem by requiring the server_name to > match the validation target (which is AFACIT also required by the > Baseline Requirements). This stops claiming arbitary names from > allowing misvalidations. > Note: The Baseline Requirements do not require this.
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Ryan Sleevi
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Tim Hollebeek
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Felipe Gasper
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Ryan Sleevi
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Tim Hollebeek
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Ryan Sleevi
- Re: [Acme] tls-alpn-01 spec: TLS-SNI history Ilari Liusvaara
- [Acme] tls-alpn-01 spec: TLS-SNI history Felipe Gasper