Re: [Curdle] Time to Review IANA SSH Registries Policies?

Peter Gutmann <> Sun, 07 February 2021 10:38 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 9A1AC3A2BE1 for <>; Sun, 7 Feb 2021 02:38:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id beN3KA66sg6Q for <>; Sun, 7 Feb 2021 02:38:25 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 5C3F63A2BB8 for <>; Sun, 7 Feb 2021 02:38:25 -0800 (PST)
Received: from ( []) (Using TLS) by with ESMTP id au-mta-64-bFLDiuuhOpKuvhTPvB5iaA-1; Sun, 07 Feb 2021 21:38:20 +1100
X-MC-Unique: bFLDiuuhOpKuvhTPvB5iaA-1
Received: from PSXP216CA0062.KORP216.PROD.OUTLOOK.COM (2603:1096:300:6::24) by (2603:10c6:220:30::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3825.20; Sun, 7 Feb 2021 10:38:13 +0000
Received: from (2603:1096:300:6:cafe::2d) by (2603:1096:300:6::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3825.17 via Frontend Transport; Sun, 7 Feb 2021 10:38:11 +0000
X-MS-Exchange-Authentication-Results: spf=none (sender IP is;; dkim=none (message not signed) header.d=none;; dmarc=none action=none
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.3784.11 via Frontend Transport; Sun, 7 Feb 2021 10:38:10 +0000
Received: from ( by ( with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 7 Feb 2021 23:38:08 +1300
Received: from ([fe80::c123:782b:aed6:3e56]) by ([fe80::c123:782b:aed6:3e56%14]) with mapi id 15.00.1497.010; Sun, 7 Feb 2021 23:38:08 +1300
From: Peter Gutmann <>
To: denis bider <>, Curdle List <>
Thread-Topic: [Curdle] Time to Review IANA SSH Registries Policies?
Thread-Index: AQHW+mYGvEt6IVKLCUiruwf0mqMCcapF/h4AgAAGCoCAAqVwxIACHLgAgAG+2YE=
Date: Sun, 7 Feb 2021 10:38:08 +0000
Message-ID: <>
References: <> <> <> <>, <>
In-Reply-To: <>
Accept-Language: en-NZ, en-GB, en-US
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: []
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 382d6d56-146e-4592-7d69-08d8cb547735
X-MS-TrafficTypeDiagnostic: ME2PR01MB3986:
X-Microsoft-Antispam-PRVS: <>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0
X-Microsoft-Antispam-Message-Info: bq1sQJcAWvOSMIZAZB7o8FsFIiryXRggsMg57ZJ/lZaOhrBayPnBZbllilYkVoYkkPNM56VxTUDba3R5cVJm+gb61ZLVXIc0qYRWM30k3SPpzqSw4d4uLVben8IE1UCJA0P4VYuH6ROoD4Bwwe2sVTzVDaWnJqcN0EUUV7e05mkwsayNlFrZli98vj0dKEye7lqz0UWcvoLJSDheqsPidAhLc4O0zc1F2r4FXkqXtR/efF4hKMUIcEq62AlOQSQr/Bd7oAkXHCxZU86cQA87pSsnxGflDQNG1DDAMCWeGlqAvvNKNfupdhPUh3YtuWNkhMgbn75derELpMXvpWFw7IbPBl4CeU1SYreqS9CCxvzZQQk43PdJB/2RIBVhYLZ5oL0FwzCbGoKB32d6QZqQH5+OklRjOe4v8aGE9oVraTsgaABOGl6NcMYAZ9UCH+d5y0vQylTHgRgnsXgP3DXG2JwneiMGgqDNw5+qdZEy5jbEQkB86EJ91Raudzg1ISLdL7bTauV8pST6BAFP0UfqDezplJne1d0JgNcgFpTHGv5HdH2IAoAMZi0wp1RiEfJJ6o4DdTBz08AHpmYf05DNGWAHC2TEy/ITBTU2kZjQy462X2kUwqxAWjUGP13g6felot1Q+r3z0umz3SbQgt111HY0sirOvGKFcVKsFsW7p44=
X-Forefront-Antispam-Report: CIP:; CTRY:NZ; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM;;; CAT:NONE; SFS:(4636009)(396003)(39860400002)(136003)(346002)(376002)(46966006)(36840700001)(36906005)(786003)(316002)(5660300002)(8936002)(26005)(356005)(2906002)(110136005)(47076005)(2616005)(86362001)(186003)(8676002)(36860700001)(83380400001)(478600001)(336012)(70586007)(7636003)(82310400003)(82740400003)(70206006); DIR:OUT; SFP:1101
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 07 Feb 2021 10:38:10.6572 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 382d6d56-146e-4592-7d69-08d8cb547735
X-MS-Exchange-CrossTenant-Id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=d1b36e95-0d50-42e9-958f-b63fa906beaa; Ip=[]; Helo=[]
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: ME2PR01MB3986
Authentication-Results:; auth=pass smtp.auth=CAU17A13
X-Mimecast-Spam-Score: 0
Content-Language: en-NZ
Content-Type: text/plain; charset=WINDOWS-1252
Content-Transfer-Encoding: quoted-printable
Archived-At: <>
Subject: Re: [Curdle] Time to Review IANA SSH Registries Policies?
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of potential new security area wg." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Sun, 07 Feb 2021 10:38:28 -0000

denis bider <> writes:

>For most things, I'm not willing to go through this effort.

It is an excessive amount of effort in many cases.  Some years ago I assisted
in the creation of an RFC used by an industry body that amounted to "if you
see the value 27 in this location, assume X".  The RFC itself was something
like ten to fifteen pages of IETF-mandated gunk that no-one in the industry
body knew what to do with, it was only the fact that I sort-of volunteered to
do the work that prevented use of the previous approach, "take the last-
currently-used value and add ten or twenty and hope no-one ever gets to it".
There'a Laffer curve at play here, and the current process seems to be too far
off to the right of it.

Not sure what the solution is, but it should at least be less painful to
comply with the process than to circumvent it.

(My suggestion for a Security Considerations section that read "The number 27
may be offensive to some religions; caution is advised", just so we could say
something interesting somewhere, wasn't accepted).