Re: [Captive-portals] thoughts on two documents
Lorenzo Colitti <lorenzo@google.com> Mon, 24 April 2017 01:19 UTC
Return-Path: <lorenzo@google.com>
X-Original-To: captive-portals@ietfa.amsl.com
Delivered-To: captive-portals@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B1F4127869 for <captive-portals@ietfa.amsl.com>; Sun, 23 Apr 2017 18:19:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X-rSL2b9y8qx for <captive-portals@ietfa.amsl.com>; Sun, 23 Apr 2017 18:19:27 -0700 (PDT)
Received: from mail-ua0-x229.google.com (mail-ua0-x229.google.com [IPv6:2607:f8b0:400c:c08::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A811212783A for <captive-portals@ietf.org>; Sun, 23 Apr 2017 18:19:27 -0700 (PDT)
Received: by mail-ua0-x229.google.com with SMTP id h2so105132876uaa.1 for <captive-portals@ietf.org>; Sun, 23 Apr 2017 18:19:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=3c3tFWx2SPwgi/ZC9Mvp0yYeBmhtLa/ajx4cSAl7dCw=; b=TKC1Lww8XVdjModSTfIZ3OeObV8GW/QEDLizCSUcdLsrLy+Vo+OHSKFLEwEASGHq8Q wBw7/XEAQTbZDGiJt8rpnHzBdM7u7trOs0sJGw6E7411lx6giYVWllYCWnBF7/K8378S Et7awmg8OMnEJASY51eIA5F/IsGqwXnD7eWE5E8C13tdhXOzPC7dV08itcE+sMT+8EeQ g9Q+sVMB294TNKX6gky/xm9jbXfohY4Q+OCBT9o6mtEMYs05NBzGvJayYr3UUDyog7OK uDuaZPLw3x2qf/GBNYy0Qtcvgq3cSunQQLicoUaxwkSllMjZgx70VH6ZmBny9M1rKtMW qEWw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=3c3tFWx2SPwgi/ZC9Mvp0yYeBmhtLa/ajx4cSAl7dCw=; b=NUfwhXgfCNdL0PIBmEpT3/lJmpKrWpGCMZDtYnkExbCXx8XH8U2WXpcKOCwlzb48A7 7qcU8l0/weyqrpeStpFUiSOhdpn5Ls97cnFBs+SJe9Pd8y5zjeNh6lc9EqSGoCXW1y5i 37J/XkoxkEJNEeS3lxnRpxmExeXkP1QnXrD+nMONT2yQyE+kmn0vWmpK8aIMmGTiOLM2 vFC27TYoqZ1e2yHp2PVqt3wJIcndqEMlfv3mqRNXiOE/Lzx0ebUYKgJrIzNpl7WHRxbv of36kwUxR45OoiYcCZZDasVVWhDKp5346ZEwp0vVbfyTY8EXYUE5M8fqH0swnQo/6QH0 iCDg==
X-Gm-Message-State: AN3rC/4YRj8Gckm6VqPkOE2BUN+xHDA6VNETg8lVGQG5lSZnKNsaKE6x 6L7AY/gwcjmArFYPXlKZzu0vZy3I9oEW
X-Received: by 10.159.40.170 with SMTP id d39mr12307919uad.122.1492996766605; Sun, 23 Apr 2017 18:19:26 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.31.110.200 with HTTP; Sun, 23 Apr 2017 18:19:06 -0700 (PDT)
In-Reply-To: <20170423160926.5161041.8476.9279@sandvine.com>
References: <CAAedzxqP4-JeBL5W-2zG7p1fxwT6oHj29WAPVyQWK-hz20rX3A@mail.gmail.com> <20170423160926.5161041.8476.9279@sandvine.com>
From: Lorenzo Colitti <lorenzo@google.com>
Date: Mon, 24 Apr 2017 10:19:06 +0900
Message-ID: <CAKD1Yr1W-Kt7hnm8e1p-xVAkq+4FC=+w9jHdm4_y6E17_LYffw@mail.gmail.com>
To: Dave Dolson <ddolson@sandvine.com>
Cc: Erik Kline <ek@google.com>, David Bird <dbird@google.com>, Kyle Larose <klarose@sandvine.com>, "captive-portals@ietf.org" <captive-portals@ietf.org>
Content-Type: multipart/alternative; boundary="94eb2c123e20ed12d1054ddf65d4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/captive-portals/taj49PvGX6165kt_Z_YehULvZzg>
Subject: Re: [Captive-portals] thoughts on two documents
X-BeenThere: captive-portals@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>
List-Post: <mailto:captive-portals@ietf.org>
List-Help: <mailto:captive-portals-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Apr 2017 01:19:30 -0000
If by "temporary" you mean years or decades, then yes. On Mon, Apr 24, 2017 at 1:09 AM, Dave Dolson <ddolson@sandvine.com> wrote: > Regarding the sacrificial q‎ueries, I would hope these are considered > temporary measures to detect existing portals, not the preferred approach. > > David Dolson > Sandvine > *From: *Erik Kline > *Sent: *Sunday, April 23, 2017 10:41 AM > *To: *David Bird; Kyle Larose > *Cc: *captive-portals@ietf.org > *Subject: *[Captive-portals] thoughts on two documents > > All, > > I have the vague feeling that there might be some general agreement around > the idea of having an ICMP unreachable code for captive portals (like an > HTTP 511 code [https://tools.ietf.org/html/rfc6585#section-6] for ICMP > :-), and it seems like there's no objection from captive portal > implementers with respect to the basic functional elements captured in > draft-larose-capport-architecture. > > Where I think some rough spots might lie for both of these is in their > integration with as-yet-undecided new behaviour. > > To that point, I would like to take my co-chair hat off and ask the > authors and the group for opinions of the following. > > [ draft-wkumari-capport-icmp-unreach ] > > There was some unresolved discussion about the contents of any included > extension. I wonder if the extra payload parts might be removed (Dave > Dolson's comment, I think?) and thereby simplify this version of the > document. Given that Destination Unreachable is a TCP soft error (vis. RFC > 5461) I'm not sure how much the proposed extra validation semantics are > really adding. > > If the document simply said that receiving and authenticating an ICMP > message with the capport code generically "MAY/SHOULD trigger the receiving > node's captive portal handling subsystem", would that be something that > folks might agree on? > > We'll need to run this whole thing by intarea and 6man as well, of course. > > And nothing stops us from proposing a mulit-part extension to be > optionally included in a future document, once the captive portal > interaction recommendations are more fully understood. > > [ draft-larose-capport-architecture ] > > I felt it was promising to hear some agreement about the functional > elements of a captive portal system as documented. > > Given that the captive portal interaction process is still on-going work, > would the document authors think it worth trying to advance the document > with either (a) section 3 removed or (b) section 3 rewritten to describe > broadly how most clients behave today? Even given the variety of clients I > think it could be roughly captured (e.g. make a few sacrificial queries to > trigger DNS/HTTP rewrites, keep trying until a sacrificial query produces > an expected result while launching an HTTP-capable application, and so on). > > -Erik > > _______________________________________________ > Captive-portals mailing list > Captive-portals@ietf.org > https://www.ietf.org/mailman/listinfo/captive-portals > >
- Re: [Captive-portals] thoughts on two documents Lorenzo Colitti
- Re: [Captive-portals] thoughts on two documents Dave Dolson
- [Captive-portals] thoughts on two documents Erik Kline
- Re: [Captive-portals] thoughts on two documents Erik Kline
- Re: [Captive-portals] thoughts on two documents Michael Richardson
- Re: [Captive-portals] thoughts on two documents Michael Richardson