Re: [hybi] IESG note?, was: Last Call: <draft-ietf-hybi-thewebsocketprotocol-10.txt> (The WebSocket protocol) to Proposed Standard

Greg Longtin <gregl.msp@gmail.com> Tue, 06 September 2011 18:09 UTC

Return-Path: <gregl.msp@gmail.com>
X-Original-To: hybi@ietfa.amsl.com
Delivered-To: hybi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC9D021F8C4A for <hybi@ietfa.amsl.com>; Tue, 6 Sep 2011 11:09:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xnc4Xuh7pOkL for <hybi@ietfa.amsl.com>; Tue, 6 Sep 2011 11:09:21 -0700 (PDT)
Received: from mail-ey0-f174.google.com (mail-ey0-f174.google.com [209.85.215.174]) by ietfa.amsl.com (Postfix) with ESMTP id 75EC921F8C47 for <hybi@ietf.org>; Tue, 6 Sep 2011 11:09:20 -0700 (PDT)
Received: by eyx24 with SMTP id 24so4365887eyx.19 for <hybi@ietf.org>; Tue, 06 Sep 2011 11:11:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=from:to:references:in-reply-to:subject:date:message-id:mime-version :content-type:content-transfer-encoding:x-mailer:thread-index :content-language; bh=MCfP+WlMCBdTRrKw7MBQFUSkh7PtZA2IcGUBql2WQ/k=; b=pQlyKmbOemKPIVTksk78TQP8FMmO4dmNApAAyhfrEAd8yFVVBp+UCk1g/1EAundaS9 H2Zj6Pn5TM4/wzh4RkjrV0R7O9/nN/HQgu16C3uPV9LZSFMDkqUpk11EE6WKE5CvqWar wXpH6WU1xBjJx5LCZihzq314IhAVio4PleM3Y=
Received: by 10.213.14.199 with SMTP id h7mr1178214eba.77.1315332664426; Tue, 06 Sep 2011 11:11:04 -0700 (PDT)
Received: from GJL8710w (office1.championent.net [216.160.45.68]) by mx.google.com with ESMTPS id z54sm1600754eef.2.2011.09.06.11.10.53 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 06 Sep 2011 11:11:00 -0700 (PDT)
From: Greg Longtin <gregl.msp@gmail.com>
To: "hybi" <hybi@ietf.org>
References: <20110711140229.17432.23519.idtracker@ietfa.amsl.com> <5355F3EF-DD59-4D3C-9578-84043A3B8E90@gbiv.com> <4E620772.9090900@gmx.de> <4E6228F9.2030108@gmx.de> <20110903194323.GA19164@1wt.eu> <C673E88C-D969-427E-B032-8695C7952253@bbn.com>
In-Reply-To: <C673E88C-D969-427E-B032-8695C7952253@bbn.com>
Date: Tue, 6 Sep 2011 13:10:50 -0500
Message-ID: <4e666234.ce640e0a.43f2.73ec@mx.google.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcxsvpEMJRrSCZYBRgmTBhrW72djDAAAPG3Q
Content-Language: en-us
Subject: Re: [hybi] IESG note?, was: Last Call: <draft-ietf-hybi-thewebsocketprotocol-10.txt> (The WebSocket protocol) to Proposed Standard
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Sep 2011 18:09:25 -0000

Richard,

> To put it in a more succinct, more alarmist way: How long will it be
> before WebSockets become popular for malware distribution?

For traffic *from* client to server?  Seems odd.

As to traffic from server to client, that isn't masked, and hence, a
firewall could parse and scan it...

Greg Longtin