Re: [Idr] [internet-drafts@ietf.org: I-D Action: draft-haas-idr-extended-experimental-00.txt]

Jared Mauch <jared@puck.nether.net> Tue, 01 November 2016 17:11 UTC

Return-Path: <jared@puck.nether.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA454129569 for <idr@ietfa.amsl.com>; Tue, 1 Nov 2016 10:11:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.699
X-Spam-Level:
X-Spam-Status: No, score=-5.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.497, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HMZ9YxfaKAOl for <idr@ietfa.amsl.com>; Tue, 1 Nov 2016 10:11:04 -0700 (PDT)
Received: from puck.nether.net (puck.nether.net [204.42.254.5]) by ietfa.amsl.com (Postfix) with ESMTP id E4EF9129562 for <idr@ietf.org>; Tue, 1 Nov 2016 10:11:03 -0700 (PDT)
Received: from [IPv6:2603:3015:3603:8e00:51e0:59a6:676c:7860] (unknown [IPv6:2603:3015:3603:8e00:51e0:59a6:676c:7860]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by puck.nether.net (Postfix) with ESMTPSA id 15DDB5407CF; Tue, 1 Nov 2016 13:11:01 -0400 (EDT)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 10.1 \(3251\))
From: Jared Mauch <jared@puck.nether.net>
In-Reply-To: <20161101170414.GD24817@gir.theapt.org>
Date: Tue, 1 Nov 2016 13:10:59 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <E82AD6A0-8F80-4E75-A4EC-CBE88D5AC289@puck.nether.net>
References: <20161031205515.GA25507@pfrc.org> <13f73d9614a84dda8f679a0e393d62b3@XCH-ALN-014.cisco.com> <20161101170414.GD24817@gir.theapt.org>
To: Peter Hessler <phessler@theapt.org>
X-Mailer: Apple Mail (2.3251)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/2wptW5I5AG0OGbzc-MPJU29MXa4>
Cc: idr@ietf.org
Subject: Re: [Idr] [internet-drafts@ietf.org: I-D Action: draft-haas-idr-extended-experimental-00.txt]
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Nov 2016 17:11:06 -0000

I’m for adopting this draft as well.

I would like to clean up the security text, as there is a lot of history behind the section 6 text:

 - snip -

6.  Security Considerations

   This document does not introduce any new security considerations into
   the BGP-4 protocol.  While the injection of unknown or badly
   formatted Optional-Transitive Path Attributes has been and remains an
   issue impacting the stability of the Internet, this proposal doesn't
   increase exposure to that issue.  It is rather expected that this
   proposal helps remediate the accidental attack surface that
   incremental BGP protocol work exposes to the Internet at large.
 - snip -

I believe it should acknowledge that in the pre-7606 world the handling
was as defined but subsequently considered harmful and with 7606 covers
the risks from this document.  Simply put, striking the text after the first
paragraph and saying the handling in 7606 covers the risk SHOULD be
sufficient.

- Jared

> On Nov 1, 2016, at 1:04 PM, Peter Hessler <phessler@theapt.org> wrote:
> 
> same and same.
> 
> if adopted by the WG, I'd be interested in tightening it up a bit more
> but that can be handled then.
> 
> 
> On 2016 Nov 01 (Tue) at 16:56:59 +0000 (+0000), Jakob Heitz (jheitz) wrote:
> :Jeff,
> :
> :This is good and I support adoption, should you ask for it.
> :It should fix the problem.
> :
> :Thanks,
> :Jakob.
> :
> :
> :> -----Original Message-----
> :> From: Idr [mailto:idr-bounces@ietf.org] On Behalf Of Jeffrey Haas
> :> Sent: Monday, October 31, 2016 1:55 PM
> :> To: idr@ietf.org
> :> Subject: [Idr] [internet-drafts@ietf.org: I-D Action: draft-haas-idr-extended-experimental-00.txt]
> :> 
> :> IDR,
> :> 
> :> There's a larger conversation to be had about proper stewardship and use of
> :> code points of all sorts, but path attributes have our attention for the
> :> moment.
> :> 
> :> A quick draft for consideration and to motivate discussion.
> :> 
> :> -- Jeff
> :> 
> :> P.S. I'm sure there's a number of rough edges in this.  I knocked it off in
> :> less than two hours after not enough sleep.
> :> 
> :> ----- Forwarded message from internet-drafts@ietf.org -----
> :> 
> :> Date: Sun, 30 Oct 2016 07:53:04 -0700
> :> From: internet-drafts@ietf.org
> :> To: i-d-announce@ietf.org
> :> Subject: I-D Action: draft-haas-idr-extended-experimental-00.txt
> :> 
> :> 
> :> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> :> 
> :> 
> :>         Title           : Extended Experimental Path Attributes for BGP
> :>         Author          : Jeffrey Haas
> :> 	Filename        : draft-haas-idr-extended-experimental-00.txt
> :> 	Pages           : 7
> :> 	Date            : 2016-10-30
> :> 
> :> Abstract:
> :>    BGP's primary feature extension mechanism, Optional-Transitive Path
> :>    Attributes, has proven to be a successful mechanism to permit BGP to
> :>    be extended.  In order to ease various issues during the development
> :>    of new BGP features, this document proposes an extended experimental
> :>    path attribute to carry prototype features.
> :> 
> :> 
> :> 
> :> The IETF datatracker status page for this draft is:
> :> https://datatracker.ietf.org/doc/draft-haas-idr-extended-experimental/
> :> 
> :> There's also a htmlized version available at:
> :> https://tools.ietf.org/html/draft-haas-idr-extended-experimental-00
> :> 
> :> 
> :> Please note that it may take a couple of minutes from the time of submission
> :> until the htmlized version and diff are available at tools.ietf.org.
> :> 
> :> Internet-Drafts are also available by anonymous FTP at:
> :> ftp://ftp.ietf.org/internet-drafts/
> :> 
> :> _______________________________________________
> :> I-D-Announce mailing list
> :> I-D-Announce@ietf.org
> :> https://www.ietf.org/mailman/listinfo/i-d-announce
> :> Internet-Draft directories: http://www.ietf.org/shadow.html
> :> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
> :> 
> :> ----- End forwarded message -----
> :> 
> :> _______________________________________________
> :> Idr mailing list
> :> Idr@ietf.org
> :> https://www.ietf.org/mailman/listinfo/idr
> :
> :_______________________________________________
> :Idr mailing list
> :Idr@ietf.org
> :https://www.ietf.org/mailman/listinfo/idr
> 
> -- 
> You are here:
> 		***
> 		***
> 	     *********
> 	      *******
> 	       *****
> 		***
> 		 *
> 
> 		 But you're not all there.
> 
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr