Re: [hybi] Extensibility mechanisms?

Adam Barth <ietf@adambarth.com> Thu, 22 July 2010 01:35 UTC

MIME-Version: 1.0
In-Reply-To: <4C479CE4.6070805@caucho.com>
References: <h2w5c902b9e1004152345j992b815bz5f8d38f06a19181a@mail.gmail.com> <4BCAB2C1.2000404@webtide.com> <B9DC25B0-CD21-44E7-BD9B-06D0C9440933@apple.com> <4BCB7829.9010204@caucho.com> <Pine.LNX.4.64.1004182349240.751@ps20323.dreamhostps.com> <4BCC0A07.9030003@gmx.de> <Pine.LNX.4.64.1004190753510.23507@ps20323.dreamhostps.com> <4BCC111C.90707@gmx.de> <Pine.LNX.4.64.1004190837570.23507@ps20323.dreamhostps.com> <4BCC204D.30004@gmx.de> <z2gad99d8ce1004190822ne4dd36b6v54d63efcc448e840@mail.gmail.com> <Pine.LNX.4.64.1007202204270.7242@ps20323.dreamhostps.com> <AANLkTikkfdlUxQ0MGNvVQKa5gfovkGHWdCgyN9juKSQJ@mail.gmail.com> <4C462F9E.9030207@caucho.com> <Pine.LNX.4.64.1007212153110.7242@ps20323.dreamhostps.com> <AANLkTiku76oSucTNDFdwgsFBNFa_cCpC-YktTnMfX47-@mail.gmail.com> <4C479130.4020500@caucho.com> <AANLkTikLDjBP-Xs5t6TxmJuq4nG8jwThQ=n34B4cEmup@mail.gmail.com> <4C479CE4.6070805@caucho.com>
From: Adam Barth <ietf@adambarth.com>
Date: Wed, 21 Jul 2010 18:34:55 -0700
Message-ID: <AANLkTims1er0Rbv0ysP4gRs1Kd0He8hapHeJ3nON=JQa@mail.gmail.com>
To: Scott Ferguson <ferg@caucho.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: Hybi <hybi@ietf.org>
Subject: Re: [hybi] Extensibility mechanisms?
Precedence: list

On Wed, Jul 21, 2010 at 6:20 PM, Scott Ferguson <ferg@caucho.com> wrote:
> Adam Barth wrote:
>> On Wed, Jul 21, 2010 at 5:30 PM, Scott Ferguson <ferg@caucho.com> wrote:
>>> The counterproposal at
>>>
>>>  http://hessian.caucho.com/websockets/draft-ferg-hybi-websockets-latest.html
>>>
>>> not complicated at all: it's a trivial protocol, and yet it solves the
>>> HyBi
>>> requirements, including requirements that the current draft ignores, as
>>> well
>>> as being extensible to muxing requirements.
>>>
>>> A dozen members of this list could come up with proposals as simple as
>>> that
>>> one and most would improve on it.
>>>
>>
>> This protocol is highly insecure.  First, the server offers no proof
>> that it understands the protocol, so it's very likely that it's
>> vulnerable to cross-protocol attacks.  Second, the client doesn't even
>> require the server to respond at all before sending (almost) arbitrary
>> content over the socket, which is very likely to lead to disaster.
>>
>
> Like I said, most people on the list could improve on it. (Since my interest
> is on the stream encoding itself, I'm perfectly willing to defer to others
> expertise on fixing the handshake.) That said,
>
> 1. The server's proof is its initial HELLO control frame. From a security
> standpoint, I don't see how this is different than a HTTP server's proof
> that it understands HTTP. If you want a hash of the input, it's trivial to
> add a nonce header for the client and a calculated hash for the response.
>
> 1a. How so? I'd like to see an actual attack.
>
> 2. No different from HTTP POST. The client may wait for the response if it
> it wants, but clients which want the equivalent responsiveness of HTTP POST
> can send data immediately. It's up to the requirements of the application.
> This design allows both application models.

I don't think you understand how cross-protocol attacks work, and I'm
not that interested in educating you about them.  HTTP POST requests
are also very poorly designed in this way and have been the cause of a
number of cross-protocol attacks, most recently against IRC.

Adam

[hybi] Extensibility mechanisms? Justin Erenkrantz
Re: [hybi] Extensibility mechanisms? Thomson, Martin
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Justin Erenkrantz
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Justin Erenkrantz
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Thomson, Martin
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Julian Reschke
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Julian Reschke
Re: [hybi] Extensibility mechanisms? Martin J. Dürst
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Ian Hickson
[hybi] HTTP is not a disaster. Was: Extensibility… Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] Extensibility mechanisms? Julian Reschke
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] HTTP is not a disaster. Was: Extensibi… Pieter Hintjens
Re: [hybi] Extensibility mechanisms? Pieter Hintjens
Re: [hybi] Extensibility mechanisms? Bjoern Hoehrmann
[hybi] NAT reset recovery? Was: Extensibility mec… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Vladimir Katardjiev
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Vladimir Katardjiev
[hybi] WebSocket, TLS and intermediaries Vladimir Katardjiev
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] Extensibility mechanisms? Julian Reschke
Re: [hybi] Extensibility mechanisms? Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Greg Wilkins
Re: [hybi] NAT reset recovery? Was: Extensibility… Vladimir Katardjiev
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Pieter Hintjens
Re: [hybi] NAT reset recovery? Was: Extensibility… Thomson, Martin
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Thomson, Martin
Re: [hybi] NAT reset recovery? Was: Extensibility… Vladimir Katardjiev
Re: [hybi] NAT reset recovery? Was: Extensibility… Dave Cridland
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Markus.Isomaki
Re: [hybi] NAT reset recovery? Was: Extensibility… Dave Cridland
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] NAT reset recovery? Was: Extensibility… Jamie Lokier
Re: [hybi] WebSocket, TLS and intermediaries Ian Hickson
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] Extensibility mechanisms? John Tamplin
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Jack Moffitt
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] WebSocket, TLS and intermediaries Mike Belshe
Re: [hybi] WebSocket, TLS and intermediaries Maciej Stachowiak
Re: [hybi] WebSocket, TLS and intermediaries John Tamplin
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] WebSocket, TLS and intermediaries Roberto Peon
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] WebSocket, TLS and intermediaries Roberto Peon
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] WebSocket, TLS and intermediaries Greg Wilkins
Re: [hybi] Extensibility mechanisms? Thomson, Martin
Re: [hybi] WebSocket, TLS and intermediaries Thomson, Martin
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] WebSocket, TLS and intermediaries Maciej Stachowiak
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Extensibility mechanisms? Roberto Peon
Re: [hybi] WebSocket, TLS and intermediaries Julian Reschke
Re: [hybi] Extensibility mechanisms? Simone Bordet
Re: [hybi] Extensibility mechanisms? Simone Bordet
Re: [hybi] WebSocket, TLS and intermediaries Maciej Stachowiak
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] WebSocket, TLS and intermediaries Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Ian Hickson
Re: [hybi] WebSocket, TLS and intermediaries Ian Hickson
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] WebSocket, TLS and intermediaries Mike Belshe
Re: [hybi] WebSocket, TLS and intermediaries Greg Wilkins
Re: [hybi] WebSocket, TLS and intermediaries Willy Tarreau
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] WebSocket, TLS and intermediaries Roberto Peon
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
[hybi] Upgrade Mechanism and HasMat (was Re: Exte… Salvatore Loreto
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Roy T. Fielding
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Salvatore Loreto
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Willy Tarreau
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Dave Cridland
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Willy Tarreau
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Extensibility mechanisms? John Tamplin
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Dave Cridland
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Dave Cridland
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? John Tamplin
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Maciej Stachowiak
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Adam Barth
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Mike Belshe
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Roy T. Fielding
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … John Tamplin
Re: [hybi] Extensibility mechanisms? Willy Tarreau
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Roy T. Fielding
Re: [hybi] Extensibility mechanisms? Simon Pieters
Re: [hybi] Extensibility mechanisms? Greg Wilkins
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Greg Wilkins
Re: [hybi] Upgrade Mechanism and HasMat (was Re: … Maciej Stachowiak
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] Extensibility mechanisms? Jamie Lokier
Re: [hybi] Extensibility mechanisms? Adam Barth
Re: [hybi] Extensibility mechanisms? Scott Ferguson
Re: [hybi] WebSocket, TLS and intermediaries Patrick McManus