IETF Logo Mail Archive

Re: [hybi] Masking only Payload/Extension Data

Patrick McManus <mcmanus@ducksong.com> Thu, 10 March 2011 16:28 UTC

Return-Path: <mcmanus@ducksong.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C67943A6B2E for <hybi@core3.amsl.com>; Thu, 10 Mar 2011 08:28:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.493
X-Spam-Level:
X-Spam-Status: No, score=-2.493 tagged_above=-999 required=5 tests=[AWL=0.106, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ly7Nk-O-3DrW for <hybi@core3.amsl.com>; Thu, 10 Mar 2011 08:28:13 -0800 (PST)
Received: from linode.ducksong.com (linode.ducksong.com [64.22.125.164]) by core3.amsl.com (Postfix) with ESMTP id 004513A6A3E for <hybi@ietf.org>; Thu, 10 Mar 2011 08:28:12 -0800 (PST)
Received: by linode.ducksong.com (Postfix, from userid 1000) id 4D2AF102A6; Thu, 10 Mar 2011 11:29:30 -0500 (EST)
Received: from [192.168.16.226] (cpe-67-253-92-25.maine.res.rr.com [67.253.92.25]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by linode.ducksong.com (Postfix) with ESMTPSA id 1C51410159; Thu, 10 Mar 2011 11:29:26 -0500 (EST)
From: Patrick McManus <mcmanus@ducksong.com>
To: Andy Green <andy@warmcat.com>
In-Reply-To: <4D78EFFD.5040906@warmcat.com>
References: <4D77B885.5050109@callenish.com> <OF36FEDDC6.06951577-ON8825784E.0062343E-8825784E.0066AC27@playstation.sony.com> <AANLkTinau4g1pB_ccJ31u7WRi5npYtHvXE5YRn5uTbeV@mail.gmail.com> <AANLkTikB4YeaYiF_NVGn61c1YxpNWbmEWQZu1WcN+=Jf@mail.gmail.com> <1299704939.2606.238.camel@ds9.ducksong.com> <20110309214212.GA29190@1wt.eu> <AANLkTi=i=8aWg=6+T7=Kn5dWeKkW6MYVCH_CuNkt_ZMM@mail.gmail.com> <AANLkTimip9o0RoZaBfONCmg5nuJVWXjOKDKgAt8zrNVV@mail.gmail.com> <AANLkTikbFBeM6+hiURSBqxFyjc2Wc-yh8UJnZiO+U0JX@mail.gmail.com> <20110310103914.GA32389@1wt.eu> <AANLkTik-TNXCMygBu3WqBHyhJWaG-XUTjCdXud9zHOgX@mail.gmail.com> <1299769498.2606.252.camel@ds9.ducksong.com> <4D78EFFD.5040906@warmcat.com>
Content-Type: text/plain; charset="UTF-8"
Date: Thu, 10 Mar 2011 11:29:43 -0500
Message-ID: <1299774583.2606.266.camel@ds9.ducksong.com>
Mime-Version: 1.0
X-Mailer: Evolution 2.30.3
Content-Transfer-Encoding: 7bit
Cc: Hybi <hybi@ietf.org>
Subject: Re: [hybi] Masking only Payload/Extension Data
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2011 16:28:13 -0000

On Thu, 2011-03-10 at 15:36 +0000, Andy Green wrote:

> > I object too. I think not masking the header gives up a minor security

> It is much cleaner protocol-wise to have consistent framing and mask 

The point of my message this morning was to make my opinion clear as it
seemingly had been missed or misunderstood. You don't need to make the
same arguments again - I'm not trying to argue mine again - simply show
that they were argued.

> What in fact does your Mozilla implementation do about breaking large 
> messages into CONTINUATION?

for a variety of reasons right now it does not generate fragments.
Though I am considering changing that based on operational experience.

v2.23.0 | Report a Bug | By Email