Re: Security for various IETF services

Pranesh Prakash <pranesh@cis-india.org> Thu, 03 April 2014 23:56 UTC

Return-Path: <pranesh@cis-india.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 828771A03BC for <ietf@ietfa.amsl.com>; Thu, 3 Apr 2014 16:56:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.79
X-Spam-Level:
X-Spam-Status: No, score=0.79 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_PSBL=2.7, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tAz78aJXysvh for <ietf@ietfa.amsl.com>; Thu, 3 Apr 2014 16:56:42 -0700 (PDT)
Received: from mail.cis-india.org (mail.cis-india.org [202.190.125.68]) by ietfa.amsl.com (Postfix) with ESMTP id 77B7A1A03AA for <ietf@ietf.org>; Thu, 3 Apr 2014 16:56:42 -0700 (PDT)
Received: from [192.168.1.65] (172-0-8-35.lightspeed.wlfrct.sbcglobal.net [172.0.8.35]) by mail.cis-india.org (Postfix) with ESMTPSA id 87CE4A7CAE7; Thu, 3 Apr 2014 23:54:27 +0000 (UTC)
Message-ID: <533DF52E.5020707@cis-india.org>
Date: Thu, 03 Apr 2014 19:56:30 -0400
From: Pranesh Prakash <pranesh@cis-india.org>
Organization: Centre for Internet and Society
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, IETF-Discussion <ietf@ietf.org>
Subject: Re: Security for various IETF services
References: <533D8A90.60309@cs.tcd.ie>
In-Reply-To: <533D8A90.60309@cs.tcd.ie>
X-Enigmail-Version: 1.6
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="7FktWsb96krVfa2tUrxWgUH5LQrnQknq3"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/5Ui6zP9qfpH98UH6sY1ZKwyKnvY
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Apr 2014 23:56:46 -0000

Stephen Farrell <stephen.farrell@cs.tcd.ie> [2014-04-003 17:21:36 +0100]:
> The most recent such was a request to turn on HSTS [1] for
> the IETF web site, which I don't think we can do without
> breaking old tools etc.

> However, as there are numerous legacy tools that have been
> built that require access via cleartext

Could you please expand on this?  What kinds of legacy tools is that 
statement talking about?

Thanks.

~ Pranesh