IETF Logo Mail Archive

Re: [DNSOP] John Scudder's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)

Roman Danyliw <rdd@cert.org> Thu, 28 October 2021 14:17 UTC

Return-Path: <rdd@cert.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 62A9A3A10DA; Thu, 28 Oct 2021 07:17:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=seicmu.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L_Ua6908BSP4; Thu, 28 Oct 2021 07:17:03 -0700 (PDT)
Received: from USG02-BN3-obe.outbound.protection.office365.us (mail-bn3usg02on0092.outbound.protection.office365.us [23.103.208.92]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9B0CB3A10D7; Thu, 28 Oct 2021 07:17:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=cdvADahKn2l05AxKnfdG9ix2lhrgu5Q/IjhYHpAPsqLx1vrsMUkJhqcG8dIwl0FaEZGotn7P8uXm8FybMwMOOA/AppzPvUdZMrgP2m8dIPTnwpIx6JngW/kDv6Z+sZD9jH/ZnQzjsf4LErkoOktJdsvEF9RKN12hAvslnOH+AixeHWMuUtPfOj9ydsvjN7x5WHzs+vaqUqDPYjuCgKcvlrF+V19Bs7E/gt9/xp3h8f9OtmAw8pabjLBuRVhCPkg7u2qzzorzlJfPjkNJi0z9KMmuULb5wcetkBA9AlcOsg1/RTPikpUbwCFW5U2z4TXNIjFm6Tpz452nkGN49b2g1g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=XNRh7xuc8AResf3Nuey6wt5BagUX+B37BLkmCbpEIxc=; b=tXsUBd0gk409a5qtG5tX2Rco4rQ6KgNvfVcPXm4VMVa7A9MEjxhPQbFgyeZQOMkhqVWZFTM+iofDeK8SXsl1khGJmYgwdCeloN2zkNPWWD+O1xLlpqMa8ytr89g3HD6PnambnEaqT1OdfXBdXBgJx5vjNLcAl3S70vnJKVNAuiAQQLoCGHdqAdKJAAUlccLCA94UL6XGYBuioNk5acEN4bFYVpIa3WHQH09gr0sc2S4/6osBrbbB3XOuw5j7EQ9yzPTyqOYarA0nR5yFbwn68D/7Y9Ttw+eb6H8huA/B/1Icwkz8t4tmCKErU2As5zK5eECivpatXvHH9pUnQCUTdg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seicmu.onmicrosoft.com; s=selector1-seicmu-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=XNRh7xuc8AResf3Nuey6wt5BagUX+B37BLkmCbpEIxc=; b=fGkm7pr/Wd924jO3mp9vg8DyJT/TAIrTMLqZSU/NbaRH7Ykb5mQIY3AEhNa+/sWQ0hCGIgko3hRuHErOxYq06W1Yw2hSeYous4+jWj13c20+m1uQebDRHLe2ePA+MBD/fj7XPduTlyAvDyurxruCn27db4v1KAijvAIzP/AFjx0=
Received: from BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:134::12) by BN1P110MB0657.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:132::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4628.18; Thu, 28 Oct 2021 14:16:52 +0000
Received: from BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM ([fe80::4463:48d1:9769:567f]) by BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM ([fe80::4463:48d1:9769:567f%6]) with mapi id 15.20.4649.015; Thu, 28 Oct 2021 14:16:52 +0000
From: Roman Danyliw <rdd@cert.org>
To: John Scudder <jgs@juniper.net>, The IESG <iesg@ietf.org>
CC: "draft-ietf-dnsop-dns-tcp-requirements@ietf.org" <draft-ietf-dnsop-dns-tcp-requirements@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, "suzworldwide@gmail.com" <suzworldwide@gmail.com>
Thread-Topic: John Scudder's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)
Thread-Index: AQHXzAGmXmrChrWjqEyqWJsD9ydgAKvoc3/Q
Date: Thu, 28 Oct 2021 14:16:52 +0000
Message-ID: <BN1P110MB0939A01B8AAA4A88C3598A1BDC869@BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM>
References: <163542852997.21101.3827007220330841514@ietfa.amsl.com>
In-Reply-To: <163542852997.21101.3827007220330841514@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: juniper.net; dkim=none (message not signed) header.d=none;juniper.net; dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8a70e3a5-f4ba-49c4-d1d0-08d99a1d96ed
x-ms-traffictypediagnostic: BN1P110MB0657:
x-microsoft-antispam-prvs: <BN1P110MB0657936C5457BDF8ED58C3A7DC869@BN1P110MB0657.NAMP110.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(366004)(54906003)(6506007)(71200400001)(83380400001)(38070700005)(26005)(110136005)(86362001)(55016002)(8676002)(33656002)(498600001)(122000001)(38100700002)(5660300002)(2906002)(966005)(53546011)(76116006)(66556008)(66476007)(64756008)(4326008)(186003)(66446008)(66946007)(52536014)(9686003)(82960400001)(8936002)(7696005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 0jR7i1dWmF9lkhDflUuW6hP3g8fNdqcvnQic8MsjJK3WfiXFPQJ708dy2K6MiWHCTTtNl66W7mQeODnEY8ziSlwC/vonmJhwaJx5byks5lzJdMQFffSMYCAo4h8XM2jzQ7nPYsJdrLBn5QYLCzb0LZtorGKhFToBiF7KmlZaoaR3rS/yWoTiVpcQwVLwHycjRquTANY2wUzJ1f/QVozUIg4UVz4p9MiftnyfRT+m2I9vC8QdnWpWDHZZe2kSYizLFwuWwnzQCt/0gdsUaZjooB9vNX2IdTgBdKt8LUYUskXHzEqOemlLMH75hj2P7l9otaaQAX74aXuLhxVZnfJQ/iKy3ampxiB5HyVojYO/EcJEBJZLP4CHRSZsmMtatl8iNv39sq5OHP54zkVtmvHLzrE6TAs0RV8QiR7jeAGdBRkq5wMFMeu1hWbdQLg+TzCpy4H113xdq2kbcW+dhiYihZ0sCi9ctC5PLJawab5KZhnnIw1c8L6+W8Qqy78eE/MI7iRDG1frOljNIND1tkFJ99wsg8e98uieoWFT5aJX62aj146JBVhnZJ7B+DEVOeZijNKQL2A0QJcRkDL8UtI8O5IkCVcC1ixK2kYoL1/JudSBajunC0tArOgHilkachTKcHQ9W9ChVm0m9fO1mPE+iEjL0JDTvuvYBCQbkK/UC6PwRFFFXh2EaZoJ6Agpz145tpUFvu4anJZ8SZprhg0upw==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN1P110MB0939.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 8a70e3a5-f4ba-49c4-d1d0-08d99a1d96ed
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Oct 2021 14:16:52.5603 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN1P110MB0657
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/9U_x1Xaj0Jx99HfFWHjdXzQkino>
Subject: Re: [DNSOP] John Scudder's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Oct 2021 14:17:08 -0000

Hi John!

> -----Original Message-----
> From: iesg <iesg-bounces@ietf.org> On Behalf Of John Scudder via Datatracker
> Sent: Thursday, October 28, 2021 9:42 AM
> To: The IESG <iesg@ietf.org>
> Cc: draft-ietf-dnsop-dns-tcp-requirements@ietf.org; dnsop@ietf.org; dnsop-
> chairs@ietf.org; suzworldwide@gmail.com
> Subject: John Scudder's No Objection on draft-ietf-dnsop-dns-tcp-requirements-
> 13: (with COMMENT)
> 
> John Scudder has entered the following ballot position for
> draft-ietf-dnsop-dns-tcp-requirements-13: No Objection
> 
> When responding, please keep the subject line intact and reply to all email
> addresses included in the To and CC lines. (Feel free to cut this introductory
> paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/blog/handling-iesg-ballot-positions/
> for more information about how to handle DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-dns-tcp-requirements/
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------

[snip]
 
> 3. Section 6 says applications should perform “full TCP segment reassembly”.
> What does that mean? A quick google search doesn’t suggest it’s a well-known
> term of art. I'm guessing that what you mean is that the applications should
> capture (and log, etc) the bytestream that was segmented and transmitted by
> TCP?

I'll let the authors speak to this, but I think this means full TCP stream reassembly -- that is analyze, the reassembled stream, not the individual packets.  There is a long history of evasion attacks in network security analysis tools when individual fragments/packets are analyzed instead of the reassembled streams.

Roman

v2.23.0 | Report a Bug | By Email