Re: [hybi] CML (really the role of intermediaries)
"Shelby Moore" <shelby@coolpage.com> Mon, 23 August 2010 17:58 UTC
Return-Path: <shelby@coolpage.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 238DB3A6888 for <hybi@core3.amsl.com>; Mon, 23 Aug 2010 10:58:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.282
X-Spam-Level:
X-Spam-Status: No, score=-2.282 tagged_above=-999 required=5 tests=[AWL=0.317, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yWCJVCtuXoEx for <hybi@core3.amsl.com>; Mon, 23 Aug 2010 10:58:04 -0700 (PDT)
Received: from www5.webmail.pair.com (www5.webmail.pair.com [66.39.3.83]) by core3.amsl.com (Postfix) with SMTP id E7C1D3A68FC for <hybi@ietf.org>; Mon, 23 Aug 2010 10:58:03 -0700 (PDT)
Received: (qmail 12781 invoked by uid 65534); 23 Aug 2010 17:58:37 -0000
Received: from 121.97.54.174 ([121.97.54.174]) (SquirrelMail authenticated user shelby@coolpage.com) by sm.webmail.pair.com with HTTP; Mon, 23 Aug 2010 13:58:37 -0400
Message-ID: <057cf67d7bac93525a1278c89beb165d.squirrel@sm.webmail.pair.com>
In-Reply-To: <AANLkTi=ea5jC=ptghbY-exnGhe2L=5eQcGM3xOOZ+4+_@mail.gmail.com>
References: <8B0A9FCBB9832F43971E38010638454F03EF2669F2@SISPE7MB1.commscope.com> <AANLkTi=G-gZ1+7uoYE=fhiKFUXoziWacx5_k-HfxC-0z@mail.gmail.com> <8B0A9FCBB9832F43971E38010638454F03EF266A07@SISPE7MB1.commscope.com> <AANLkTimTBLvHXTGciDM4ef1hNXPHn7cjR-kxbd8pBq3+@mail.gmail.com> <1282566193.2014.104.camel@tng> <49282d3cc8cd18799a1da38f841c7bf7.squirrel@sm.webmail.pair.com> <1282575733.2014.220.camel@tng> <b0e6392d3043749966f9ad4afadde8e0.squirrel@sm.webmail.pair.com> <171879b6783148dce0af40ab185a9346.squirrel@sm.webmail.pair.com> <AANLkTi=FXUYE=2He71AJFeeT5fsov++qcHHCs6rSOP_7@mail.gmail.com> <31b98b27ecd4a104f5d175d2113055ee.squirrel@sm.webmail.pair.com> <AANLkTi=ea5jC=ptghbY-exnGhe2L=5eQcGM3xOOZ+4+_@mail.gmail.com>
Date: Mon, 23 Aug 2010 13:58:37 -0400
From: Shelby Moore <shelby@coolpage.com>
To: John Tamplin <jat@google.com>
User-Agent: SquirrelMail/1.4.20
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Cc: "hybi@ietf.org" <hybi@ietf.org>
Subject: Re: [hybi] CML (really the role of intermediaries)
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: shelby@coolpage.com
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Aug 2010 17:58:05 -0000
> On Mon, Aug 23, 2010 at 11:54 AM, Shelby Moore <shelby@coolpage.com> > wrote: > >> 1) What you do inside your LAN is your own business, but there is no >> justification for forcing that on the standard that is used every where >> outside your LAN. >> > > I thought you were the one arguing that non-TLS should be an option as > well? Correct I am. I have not changed. We should support both HTTP and TLS. Tangentially, I am also still praying to geek god of divine intervention, that somehow this list will see the wisdom of WebSockets over any other port with recommended STUN tunneling to get through roughly 65% of the NATs (roughly same success as for HTTP, with both to rise in success as they gain support and use). It might just gain momentum and make us all super proud of our dramatic effect on the world. > So why are you objecting to the connection between the frontend and > backend > not being in TLS? I am not objecting technically. You can do what you want. Just don't force a CML bit to accomplish it. I am only objecting that if I was a user of your services and if you are going to promise to secure my data and you don't keep it encrypted, then I am going to call your company a liar, because no company can be sure a hacker won't get inside. Google in China is an example. But I am not being too hard on you for that, because none of us are employing end-to-end security yet. I wish we would. There are many barriers, such as the operating systems, etc. Unfortunately everyone thinks the firewall is security. But any way, that is not worth debating here. Lets stay on the technical debate about conflation. See below... >> 2) I happen to expect you to keep my data encrypted always, even when >> you >> store it. I know computers are perfected yet in that regard, but they >> need to be: >> > > This isn't about storing it - it is about layering software. I receive a > frame that is encapsulated in TLS -- I remove the TLS wrapping (ie, > decrypt > it), and pass it to the next layer. If that next layer happens to be on a > different machine in a cluster, I don't see why I should have to > re-encrypt > it to send it there rather than if that next layer happens to be on the > same > machine. Same reply as above. >> But regardless of whether the user's expectation of security with TLS is >> met by your company, nevertheless, TLS is not a routing protocol that we >> need to conflate into our framing header for WebSockets. TLS is a way >> to >> achieve encryption. If your particular implementation needs to signal >> something, then signal it on top of the base protocol, not force the >> entire world to carry your reserved bit around as unused payload. >> > > I am really at a loss to understand what you are arguing at this point. > You > seem to be arguing about a CML bit while discussing TLS, and they aren't > related in the slightest I had originally replied to Patrick McManus, who was replying to John Tamplin, who was arguing that we needed the CML bit in order to inplement the TLS issue we are debating now: http://www.ietf.org/mail-archive/web/hybi/current/msg03553.html http://www.ietf.org/mail-archive/web/hybi/current/msg03530.html Or was I mistaken about what they were arguing for?
- Re: [hybi] CML John Tamplin
- [hybi] CML Thomson, Martin
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML Thomson, Martin
- Re: [hybi] CML Thomson, Martin
- [hybi] Intermediaries (was: CML) Thomson, Martin
- Re: [hybi] Intermediaries (was: CML) John Tamplin
- Re: [hybi] Intermediaries (was: CML) Thomson, Martin
- Re: [hybi] Intermediaries (was: CML) John Tamplin
- Re: [hybi] Intermediaries (was: CML) Brian
- Re: [hybi] CML (really the role of intermediaries) Patrick McManus
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] Intermediaries (was: CML) John Tamplin
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Patrick McManus
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML (really the role of intermediaries) John Tamplin
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML (really the role of intermediaries) John Tamplin
- Re: [hybi] CML (really the role of intermediaries) Patrick McManus
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Roberto Peon
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML (really the role of intermediaries) Roberto Peon
- Re: [hybi] CML Brian Smith
- Re: [hybi] CML Dave Cridland
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML (really the role of intermediaries) Roberto Peon
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML (really the role of intermediaries) Roberto Peon
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML gustav
- Re: [hybi] CML Dave Cridland
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Dave Cridland
- Re: [hybi] CML gustav
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- [hybi] convincing by hammering Daniel Stenberg
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Dave Cridland
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML Dave Cridland
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Dave Cridland
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Eric Rescorla
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- Re: [hybi] CML (really the role of intermediaries) Shelby Moore
- [hybi] Layer models Dave Cridland
- Re: [hybi] CML Dave Cridland
- Re: [hybi] CML Shelby Moore
- Re: [hybi] Layer models Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] convincing by hammering Willy Tarreau
- Re: [hybi] convincing by hammering Anne van Kesteren
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering gustav
- Re: [hybi] convincing by hammering John Tamplin
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering Willy Tarreau
- Re: [hybi] convincing by hammering gustav
- Re: [hybi] convincing by hammering Julian Reschke
- Re: [hybi] convincing by hammering Willy Tarreau
- Re: [hybi] convincing by hammering Brian McKelvey
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering S Moonesamy
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] convincing by hammering S Moonesamy
- Re: [hybi] convincing by hammering Shelby Moore
- Re: [hybi] CML Jamie Lokier
- Re: [hybi] CML Jamie Lokier
- Re: [hybi] CML Jamie Lokier
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML John Tamplin
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Jamie Lokier
- Re: [hybi] CML Jamie Lokier
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Shelby Moore
- Re: [hybi] CML Thomson, Martin
- Re: [hybi] CML John Tamplin