IETF Logo Mail Archive

Re: [hybi] handshake security (was: Frame size)

Jamie Lokier <jamie@shareable.org> Tue, 20 April 2010 02:03 UTC

Return-Path: <jamie@shareable.org>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 700593A6892 for <hybi@core3.amsl.com>; Mon, 19 Apr 2010 19:03:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.062
X-Spam-Level:
X-Spam-Status: No, score=-3.062 tagged_above=-999 required=5 tests=[AWL=-0.463, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0fUCjslinmJi for <hybi@core3.amsl.com>; Mon, 19 Apr 2010 19:03:57 -0700 (PDT)
Received: from mail2.shareable.org (mail2.shareable.org [80.68.89.115]) by core3.amsl.com (Postfix) with ESMTP id 7A3243A67AD for <hybi@ietf.org>; Mon, 19 Apr 2010 19:03:57 -0700 (PDT)
Received: from jamie by mail2.shareable.org with local (Exim 4.63) (envelope-from <jamie@shareable.org>) id 1O42oU-0006h1-JB; Tue, 20 Apr 2010 03:03:46 +0100
Date: Tue, 20 Apr 2010 03:03:46 +0100
From: Jamie Lokier <jamie@shareable.org>
To: Ian Hickson <ian@hixie.ch>
Message-ID: <20100420020346.GG21899@shareable.org>
References: <8B0A9FCBB9832F43971E38010638454F03E3F313ED@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004161940180.751@ps20323.dreamhostps.com> <8B0A9FCBB9832F43971E38010638454F03E7D0678C@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004190009190.751@ps20323.dreamhostps.com> <8B0A9FCBB9832F43971E38010638454F03E7D067A9@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004190159340.751@ps20323.dreamhostps.com> <8B0A9FCBB9832F43971E38010638454F03E7D0682D@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004190404290.751@ps20323.dreamhostps.com> <8B0A9FCBB9832F43971E38010638454F03E7D0684C@SISPE7MB1.commscope.com> <Pine.LNX.4.64.1004190641510.751@ps20323.dreamhostps.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.64.1004190641510.751@ps20323.dreamhostps.com>
User-Agent: Mutt/1.5.13 (2006-08-11)
Cc: Hybi <hybi@ietf.org>, "Thomson, Martin" <Martin.Thomson@andrew.com>
Subject: Re: [hybi] handshake security (was: Frame size)
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Apr 2010 02:03:58 -0000

Ian Hickson wrote:
> On Mon, 19 Apr 2010, Thomson, Martin wrote:
> > >
> > > The idea is not to make the client able to do anything, the idea is to 
> > > make the server more likely to fail to get to the point where it is 
> > > accepting frames without having checked that it's a Web Socket client.
> > 
> > That's the tension.  The lazy server implementer does the minimum that 
> > they believe they can get away with.  If they have to interoperate with 
> > browsers, they will do the minimum to interoperate with browsers.
> > 
> > That leaves a lot of room for error - and you know what, that's probably 
> > OK.  The only one who suffers is the server implementer.  They are the 
> > ones being duped.
> 
> Also the user.
> 
> I think that both the implementor getting duped and the user getting duped 
> are problems that we should do our best to help with. I do not want to be 
> responsible for developing a protocol where half the deployments are 
> vulnerable to attack, even if those bugs are technically flaws in the 
> implementations and not in the protocol.

One little flaw in the plan:

Won't all lazy implementors just cut and paste the handshaking code
and then put their minimal server code after it?

-- Jamie

v2.23.0 | Report a Bug | By Email