Re: [apps-discuss] sftp Re: Request for Review - draft-yevstifeyev-rlogin-uri-00

[John C Klensin <john-ietf@jck.com>]

--On Thursday, February 03, 2011 17:45 +0100 "t.petch"
<ietfc@btconnect.com> wrote:

> John
> 
> A propos sftp, there was a joint ssh/sftp I-D in the secssh WG
> but it fell by the wayside for lack of support in the WG.  The
> ssh part made it to IETF Last Call last November and, 50 days
> later, the status is revised I-D needed.

And so?

If I ran the IETF, a lot of priorities would probably be
different.  I don't, and that is probably a good thing for all
of us, myself included.   

I was only trying to make one point, which is that I think we
should be a lot more concerned about URIs for older protocols
that retrieve or deliver things than about URIs that merely
start interactive sessions.   Simply having a URI for the FooBar
protocol is unlikely to cause even one more user-level system to
implement the underlying protocol.  Worse, it might even cause
what I think is the worst case -- a half-baked, insecure, and
sloppy implementation to conform to a checklist.

So, for old protocols, I think we should be asking the questions:

	(1) Does anyone care about the underlying protocol any
	more?
	
	(2) Do we want to encourage the implementation and use
	of that protocol on the public Internet and is the URI
	definition satisfactory for that purpose?
	
	(3) Would the URI actually enable some useful
	functionality rather than just providing an alternate
	syntax for starting some command or subsystem?

For sftp and its close relatives, I think the answer to all
three questions is "yes", even if the secssh WG either doesn't
agree or doesn't see there as being work on it that the IETF
needs to do.

For rlogin, I'd give a weak "yes" to the first question
--certainly the thing is in active use on a lot of LANs-- but
I'd give a negative answer to the other two.

But those are just my opinion.

    john