Re: [Curdle] Time to Review IANA SSH Registries Policies?

Peter Gutmann <pgut001@cs.auckland.ac.nz> Sun, 07 February 2021 10:38 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: curdle@ietfa.amsl.com
Delivered-To: curdle@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A1AC3A2BE1 for <curdle@ietfa.amsl.com>; Sun, 7 Feb 2021 02:38:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id beN3KA66sg6Q for <curdle@ietfa.amsl.com>; Sun, 7 Feb 2021 02:38:25 -0800 (PST)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [124.47.189.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5C3F63A2BB8 for <curdle@ietf.org>; Sun, 7 Feb 2021 02:38:25 -0800 (PST)
Received: from AUS01-ME3-obe.outbound.protection.outlook.com (mail-me3aus01lp2234.outbound.protection.outlook.com [104.47.71.234]) (Using TLS) by relay.mimecast.com with ESMTP id au-mta-64-bFLDiuuhOpKuvhTPvB5iaA-1; Sun, 07 Feb 2021 21:38:20 +1100
X-MC-Unique: bFLDiuuhOpKuvhTPvB5iaA-1
Received: from PSXP216CA0062.KORP216.PROD.OUTLOOK.COM (2603:1096:300:6::24) by ME2PR01MB3986.ausprd01.prod.outlook.com (2603:10c6:220:30::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3825.20; Sun, 7 Feb 2021 10:38:13 +0000
Received: from PU1APC01FT013.eop-APC01.prod.protection.outlook.com (2603:1096:300:6:cafe::2d) by PSXP216CA0062.outlook.office365.com (2603:1096:300:6::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3825.17 via Frontend Transport; Sun, 7 Feb 2021 10:38:11 +0000
X-MS-Exchange-Authentication-Results: spf=none (sender IP is 130.216.95.208) smtp.mailfrom=cs.auckland.ac.nz; gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cs.auckland.ac.nz
Received: from uxcn13-tdc-c.UoA.auckland.ac.nz (130.216.95.208) by PU1APC01FT013.mail.protection.outlook.com (10.152.252.78) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.3784.11 via Frontend Transport; Sun, 7 Feb 2021 10:38:10 +0000
Received: from uxcn13-tdc-d.UoA.auckland.ac.nz (10.6.3.5) by uxcn13-tdc-c.UoA.auckland.ac.nz (10.6.3.4) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 7 Feb 2021 23:38:08 +1300
Received: from uxcn13-tdc-d.UoA.auckland.ac.nz ([fe80::c123:782b:aed6:3e56]) by uxcn13-tdc-d.UoA.auckland.ac.nz ([fe80::c123:782b:aed6:3e56%14]) with mapi id 15.00.1497.010; Sun, 7 Feb 2021 23:38:08 +1300
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: denis bider <denisbider.ietf@gmail.com>, Curdle List <curdle@ietf.org>
Thread-Topic: [Curdle] Time to Review IANA SSH Registries Policies?
Thread-Index: AQHW+mYGvEt6IVKLCUiruwf0mqMCcapF/h4AgAAGCoCAAqVwxIACHLgAgAG+2YE=
Date: Sun, 7 Feb 2021 10:38:08 +0000
Message-ID: <1612694289067.44125@cs.auckland.ac.nz>
References: <A77E7858-C4ED-4DA0-8015-5E67EB921144@sn3rd.com> <02E82091-15F9-4C36-96AD-1F88CC2E5594@akamai.com> <CAMm+LwgUPBiZ6FoiBir9ByFPFxgcWtMGVKC4LPNVM7EdCaVoDQ@mail.gmail.com> <1612482228184.63328@cs.auckland.ac.nz>, <CADPMZDDUe64wXaRENUHv-gVFmQNp2OmBNveSpOFwPxTMLHo8sg@mail.gmail.com>
In-Reply-To: <CADPMZDDUe64wXaRENUHv-gVFmQNp2OmBNveSpOFwPxTMLHo8sg@mail.gmail.com>
Accept-Language: en-NZ, en-GB, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [130.216.158.4]
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 382d6d56-146e-4592-7d69-08d8cb547735
X-MS-TrafficTypeDiagnostic: ME2PR01MB3986:
X-Microsoft-Antispam-PRVS: <ME2PR01MB39868426CC0FF8A51CBC7642EEB09@ME2PR01MB3986.ausprd01.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0
X-Microsoft-Antispam-Message-Info: bq1sQJcAWvOSMIZAZB7o8FsFIiryXRggsMg57ZJ/lZaOhrBayPnBZbllilYkVoYkkPNM56VxTUDba3R5cVJm+gb61ZLVXIc0qYRWM30k3SPpzqSw4d4uLVben8IE1UCJA0P4VYuH6ROoD4Bwwe2sVTzVDaWnJqcN0EUUV7e05mkwsayNlFrZli98vj0dKEye7lqz0UWcvoLJSDheqsPidAhLc4O0zc1F2r4FXkqXtR/efF4hKMUIcEq62AlOQSQr/Bd7oAkXHCxZU86cQA87pSsnxGflDQNG1DDAMCWeGlqAvvNKNfupdhPUh3YtuWNkhMgbn75derELpMXvpWFw7IbPBl4CeU1SYreqS9CCxvzZQQk43PdJB/2RIBVhYLZ5oL0FwzCbGoKB32d6QZqQH5+OklRjOe4v8aGE9oVraTsgaABOGl6NcMYAZ9UCH+d5y0vQylTHgRgnsXgP3DXG2JwneiMGgqDNw5+qdZEy5jbEQkB86EJ91Raudzg1ISLdL7bTauV8pST6BAFP0UfqDezplJne1d0JgNcgFpTHGv5HdH2IAoAMZi0wp1RiEfJJ6o4DdTBz08AHpmYf05DNGWAHC2TEy/ITBTU2kZjQy462X2kUwqxAWjUGP13g6felot1Q+r3z0umz3SbQgt111HY0sirOvGKFcVKsFsW7p44=
X-Forefront-Antispam-Report: CIP:130.216.95.208; CTRY:NZ; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:uxcn13-tdc-c.UoA.auckland.ac.nz; PTR:natgate1-1.auckland.ac.nz; CAT:NONE; SFS:(4636009)(396003)(39860400002)(136003)(346002)(376002)(46966006)(36840700001)(36906005)(786003)(316002)(5660300002)(8936002)(26005)(356005)(2906002)(110136005)(47076005)(2616005)(86362001)(186003)(8676002)(36860700001)(83380400001)(478600001)(336012)(70586007)(7636003)(82310400003)(82740400003)(70206006); DIR:OUT; SFP:1101
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 07 Feb 2021 10:38:10.6572 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 382d6d56-146e-4592-7d69-08d8cb547735
X-MS-Exchange-CrossTenant-Id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=d1b36e95-0d50-42e9-958f-b63fa906beaa; Ip=[130.216.95.208]; Helo=[uxcn13-tdc-c.UoA.auckland.ac.nz]
X-MS-Exchange-CrossTenant-AuthSource: PU1APC01FT013.eop-APC01.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: ME2PR01MB3986
Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CAU17A13 smtp.mailfrom=pgut001@cs.auckland.ac.nz
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset=WINDOWS-1252
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/curdle/rgY9dfnDM5iE33M4SmU0UuXDmTs>
Subject: Re: [Curdle] Time to Review IANA SSH Registries Policies?
X-BeenThere: curdle@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <curdle.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/curdle>, <mailto:curdle-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/curdle/>
List-Post: <mailto:curdle@ietf.org>
List-Help: <mailto:curdle-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/curdle>, <mailto:curdle-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Feb 2021 10:38:28 -0000

denis bider <denisbider.ietf@gmail.com> writes:

>For most things, I'm not willing to go through this effort.

It is an excessive amount of effort in many cases.  Some years ago I assisted
in the creation of an RFC used by an industry body that amounted to "if you
see the value 27 in this location, assume X".  The RFC itself was something
like ten to fifteen pages of IETF-mandated gunk that no-one in the industry
body knew what to do with, it was only the fact that I sort-of volunteered to
do the work that prevented use of the previous approach, "take the last-
currently-used value and add ten or twenty and hope no-one ever gets to it".
There'a Laffer curve at play here, and the current process seems to be too far
off to the right of it.

Not sure what the solution is, but it should at least be less painful to
comply with the process than to circumvent it.

(My suggestion for a Security Considerations section that read "The number 27
may be offensive to some religions; caution is advised", just so we could say
something interesting somewhere, wasn't accepted).

Peter.