IETF Logo Mail Archive

Re: [dhcwg] Lifetime draft: refresh time should never be more than IRT_DEFAULT

kck@netcom.com Tue, 09 November 2004 18:20 UTC

Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA27093; Tue, 9 Nov 2004 13:20:24 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CRaZV-0006CU-6v; Tue, 09 Nov 2004 13:18:25 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CRaWe-0005eM-LA for dhcwg@megatron.ietf.org; Tue, 09 Nov 2004 13:15:28 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA26787 for <dhcwg@ietf.org>; Tue, 9 Nov 2004 13:15:24 -0500 (EST)
From: kck@netcom.com
Received: from smtp6.mindspring.com ([207.69.200.110]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CRaXO-0002Z4-LI for dhcwg@ietf.org; Tue, 09 Nov 2004 13:16:17 -0500
Received: from [192.168.167.44] (helo=wamui06.slb.atl.earthlink.net) by smtp6.mindspring.com with esmtp (Exim 3.33 #1) id 1CRaWW-0004b2-00 for dhcwg@ietf.org; Tue, 09 Nov 2004 13:15:20 -0500
Message-ID: <28895635.1100024120896.JavaMail.root@wamui06.slb.atl.earthlink.net>
Date: Tue, 09 Nov 2004 10:15:19 -0800
To: dhcwg@ietf.org
Subject: Re: [dhcwg] Lifetime draft: refresh time should never be more than IRT_DEFAULT
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Earthlink Zoo Mail 1.0
X-Spam-Score: 0.3 (/)
X-Scan-Signature: cf4fa59384e76e63313391b70cd0dd25
Content-Transfer-Encoding: 7bit
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: kck@netcom.com
List-Id: dhcwg.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Sender: dhcwg-bounces@ietf.org
Errors-To: dhcwg-bounces@ietf.org
Content-Transfer-Encoding: 7bit

> On Nov 9, 2004, at 10:17 AM, Stig Venaas wrote:
> >I understand your concern, but I don't see why it should be disallowed.
> >The administrator should be able to figure out what's reasonable in
> >hers/his environment.
> >
> >To use the DNS ttl analogy, there's nothing stopping you from setting
> >a needlessly large ttl value either.
> 
> It's a really phat DoS attack - you send out one bogus message with a 
> really long lifetime, and the information will never be refreshed.   I 
> would argue that DNS needs to have a limit on TTLs also, but that's not 
> my bailiwick.   :')

The amount of damage that can be done in 1 day or even 1 hour is great. Not sure a TTL is really the device to protect against a DoS attack. However, I think there are other reasons for keeping the max time smaller and those can be used to argue for lower values but ulimately the admin controls the setting.

--rich

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

v2.29.0 | Report a Bug | By Email | System Status