IETF Logo Mail Archive

Re: Last Call: <draft-ietf-tsvwg-iana-ports-09.txt> (Internet Assigned Numbers Authority (IANA) Procedures for the Management of the Service Name and Transport Protocol Port Number Registry) to BCP

Cullen Jennings <fluffy@cisco.com> Tue, 01 February 2011 17:15 UTC

Return-Path: <fluffy@cisco.com>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A1BFB3A6DC9; Tue, 1 Feb 2011 09:15:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.587
X-Spam-Level:
X-Spam-Status: No, score=-110.587 tagged_above=-999 required=5 tests=[AWL=0.012, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zji+QXaSv6ry; Tue, 1 Feb 2011 09:15:49 -0800 (PST)
Received: from sj-iport-3.cisco.com (sj-iport-3.cisco.com [171.71.176.72]) by core3.amsl.com (Postfix) with ESMTP id CF91F3A67F9; Tue, 1 Feb 2011 09:15:49 -0800 (PST)
Authentication-Results: sj-iport-3.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvsEAFLPR02rRN+J/2dsb2JhbAClB3OhV5shhVMEhROHEA
Received: from sj-core-3.cisco.com ([171.68.223.137]) by sj-iport-3.cisco.com with ESMTP; 01 Feb 2011 17:19:07 +0000
Received: from sjc-vpn5-165.cisco.com (sjc-vpn5-165.cisco.com [10.21.88.165]) by sj-core-3.cisco.com (8.13.8/8.14.3) with ESMTP id p11HJ6hE004674; Tue, 1 Feb 2011 17:19:06 GMT
Subject: Re: Last Call: <draft-ietf-tsvwg-iana-ports-09.txt> (Internet Assigned Numbers Authority (IANA) Procedures for the Management of the Service Name and Transport Protocol Port Number Registry) to BCP
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: text/plain; charset="us-ascii"
From: Cullen Jennings <fluffy@cisco.com>
In-Reply-To: <4D46B3B9.4050804@ericsson.com>
Date: Tue, 01 Feb 2011 12:19:06 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <755A9333-6960-4BCC-B996-3775E76B5D9E@cisco.com>
References: <20110118212603.5733.34489.idtracker@localhost> <B88A8A82-9C4A-40AC-89AF-F177260760F7@cisco.com> <4D413827.7040407@ericsson.com> <B4F0B107-4D84-43A5-A091-B6877D24C23B@cisco.com> <4D46B3B9.4050804@ericsson.com>
To: Magnus Westerlund <magnus.westerlund@ericsson.com>
X-Mailer: Apple Mail (2.1082)
Cc: IESG IESG <iesg@ietf.org>, IETF discussion list <ietf@ietf.org>, tsvwg@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Feb 2011 17:15:50 -0000

So to summarize what you are saying, ports are allocated based on an arbitrary view of the expert review. When this person will say yes or no too can't be described and will change over time. 

If that's how it works, there is not even any grounds for appeal of any given decision. You can't even use precedence as an argument. My view was the IESG has been trying to move to having much more concrete advice for registries that required expert review. If you agree that is about the right summary, then I'm pretty sure I can find plenty of other people that would agree with me that this is not OK. I'm not a fan of the WG could not get consensus on if we should allow A or not so we are just going to let the expert review do whatever they want. If the IETF could not come to consensus on if X  or Y were reasons to deny a registration, then I don't think the expert review should be able to deny a registration due to X or Y. 



On Jan 31, 2011, at 8:06 , Magnus Westerlund wrote:

> Cullen Jennings skrev 2011-01-30 05:56:
> >
> > I read the draft to say that there would only be one port allocated - I took strive to mean that Joe would deny my port requests for two ports. If the intention is actually for the draft to say that it strives for one port but allows assignment of two where the that is what the protocol design desire, then I have no problem. Perhaps we just need to clarify what "strive" means. This definition of "strive" leads into exactly my other complain that this draft provides no guidance on what the expert will or will not approve.
> >
> > We probably need to adjust text like
> >
> > o  IANA strives to encourage the deployment of secure protocols, and
> >      so strives to avoid separate assignments for non-secure variants
> >
> > and
> >
> >  The use of separate
> >   service name or port number assignments for secure and insecure
> >   variants of the same service is to be avoided in order to discourage
> >   the deployment of insecure services.
> >
> > and
> >
> >  Services are expected to include support for security, either as
> >   default or dynamically negotiated in-band.
> >
> >
> > In band negotiation of security is applicable for some cases, but it adds latency, bandwidth, and complicated multiplexing in non session based transports. I think this is a bad idea in many cases. I also view separation even for stream based protocols as something that helps management and debugging as well as policy.
> >
> 
> Well, the high level goal is to preserve a limited resource. We can't do
> that without making the preference clear. But I think you have forgotten
> to consider those statements trying to make clear that this is up to
> review.
> 
> The review criterias can be expected to change overtime. They are also
> hard to codify. Especially for this case, how do we measure
> architectural uncleanness, implementation issues, and performance impact
> to make a rule that judges if one or more port is allowed?

v2.23.0 | Report a Bug | By Email