IETF Logo Mail Archive

Re: [Gen-art] Gen-ART review of draft-ietf-opsec-ip-security-05

Fernando Gont <fernando@gont.com.ar> Mon, 03 January 2011 21:22 UTC

Return-Path: <fernando.gont.netbook.win@gmail.com>
X-Original-To: gen-art@core3.amsl.com
Delivered-To: gen-art@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1CC2D3A6C42 for <gen-art@core3.amsl.com>; Mon, 3 Jan 2011 13:22:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.53
X-Spam-Level:
X-Spam-Status: No, score=-3.53 tagged_above=-999 required=5 tests=[AWL=0.069, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id znPRzyssLawN for <gen-art@core3.amsl.com>; Mon, 3 Jan 2011 13:21:42 -0800 (PST)
Received: from mail-gx0-f194.google.com (mail-gx0-f194.google.com [209.85.161.194]) by core3.amsl.com (Postfix) with ESMTP id 7683A3A6C3B for <gen-art@ietf.org>; Mon, 3 Jan 2011 13:21:42 -0800 (PST)
Received: by gxk1 with SMTP id 1so3346001gxk.1 for <gen-art@ietf.org>; Mon, 03 Jan 2011 13:23:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :x-enigmail-version:openpgp:content-type:content-transfer-encoding; bh=AxFweQ3su1N7eBBX531+IXQdWx5ESRP2g2i2mpT/y9Q=; b=acxy7kQPgfmQB3Rn3XaRQF6aw4GfmG9RnoRMFtY7WudjbO835NR4gUhG+vB9d6stk/ N5cO/9tH8i0oXlH3NOer3h6EmXcA5/pBWMVmrOQdH9tBMh/KHq6bi2F3dp+nU4fIAWqr gSXpJlhV6b8jyWmFkuUgrAJs9Z7FbYekgv/wM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:openpgp:content-type :content-transfer-encoding; b=bt+7/2pJwroqXlnrX3jDG60cxmQ2aHlzllQUXvSCTFNk3d8cVDQLGHYWblKRYfOtFq ONT4QPy6uNpflkLLPhlp3OHUGkeGIb5vXt5a2jtiVAVYm58jsEBYBXcviZmBHB9ibtYd nb/wq7gGDUwRVod+0JVJW1Ki0Nluo9uVouJfs=
Received: by 10.100.191.7 with SMTP id o7mr12524384anf.198.1294089829272; Mon, 03 Jan 2011 13:23:49 -0800 (PST)
Received: from [192.168.0.120] (61-128-17-190.fibertel.com.ar [190.17.128.61]) by mx.google.com with ESMTPS id i10sm28602585anh.12.2011.01.03.13.23.30 (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 03 Jan 2011 13:23:47 -0800 (PST)
Sender: Fernando Gont <fernando.gont.netbook.win@gmail.com>
Message-ID: <4D223E40.5090107@gont.com.ar>
Date: Mon, 03 Jan 2011 18:23:12 -0300
From: Fernando Gont <fernando@gont.com.ar>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.2.8) Gecko/20100802 Thunderbird/3.1.2
MIME-Version: 1.0
To: "Vijay K. Gurbani" <vkg@bell-labs.com>
References: <4D220FCF.2040805@bell-labs.com>
In-Reply-To: <4D220FCF.2040805@bell-labs.com>
X-Enigmail-Version: 1.1.1
OpenPGP: id=D076FFF1
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: Ron Bonica <rbonica@juniper.net>, draft-ietf-opsec-ip-security@tools.ietf.org, warren@kumari.net, General Area Review Team <gen-art@ietf.org>, jabley@hopcount.ca
Subject: Re: [Gen-art] Gen-ART review of draft-ietf-opsec-ip-security-05
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jan 2011 21:22:14 -0000

Hi, Vijay,

Thanks so much for your feedback! -- Please find my response inline...

On 03/01/2011 03:05 p.m., Vijay K. Gurbani wrote:

> 1) S3.3.2.2, page 14 --- please expand the acronym "RED" on first use.

Will do.


> 2) S3.5.1, top of end of page 16 and top of page 17 --- "Linux (and
>  Solaris) later set the IP Identification field on a per-IP address
>  basis."  Which address --- source or destination?

"destination" -- although "per-remote IP address" would probably be more
correct clearer here. Thoughts?


> 4) S3.6, underneath Figure 5 on page 20 ---
>  s/In Figure 3, an attacker/In Figure 5, an attacker/

Good grief! -- Will fix this one.



> 5) Same section, same page ---
>  s/router that encounters that this/router to determine that this/

Yep, better. Will fix this. Thanks!



> 6) S3.7 --- when discussing the Fragment Offset, is it worth
>  stating that the Fragment Offset is measured in units of 8 octets
>  (thereby giving the magic number 65528 = 8191*8)?

This *is* mentioned in the first paragraph of Section 3.7, as follows:

---- cut here ----
   It indicates where in the original datagram payload
   the payload of the fragment belongs, and is measured in units of
   eight bytes.
---- cut here ----

So I assume no changes needed here?



> 7) S3.8.4, page 26, last bullet item at top of page ---
>  s/Four hops away from D./Two hops away from D./

The original text is incorrect, but I should s/Four/Three/ (rather than
s/Four/Two/). -- Will fix this as I've indicated.



> 8) S4.1.1.3, page 51, last paragraph of that subsection ---
>  Any references?

One possible example would be the ping 'o death. -- I will provide
references in the next rev of the document.



> 9) S4.1.1.4, page 52, first bullet item, first sentence ---
>  what do you mean by "overlapping fragments"?  Maybe you meant,
>  instead, "duplicate fragments"?

No, I did mean "overlapping fragments" -- i.e., fragments that contain a
portion of the same piece of original datagram (i.e., they overlap with
each other)

Thanks!

Kind regards,
-- 
Fernando Gont
e-mail: fernando@gont.com.ar || fgont@acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

v2.23.0 | Report a Bug | By Email