IETF Logo Mail Archive

Re: ietf.org end-to-end principle

Stefan Winter <stefan.winter@restena.lu> Thu, 17 March 2016 07:59 UTC

Return-Path: <stefan.winter@restena.lu>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2DD3D12D811 for <ietf@ietfa.amsl.com>; Thu, 17 Mar 2016 00:59:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, WEIRD_PORT=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W6qAvtRehOM8 for <ietf@ietfa.amsl.com>; Thu, 17 Mar 2016 00:59:34 -0700 (PDT)
Received: from smtprelay.restena.lu (smtprelay.restena.lu [IPv6:2001:a18:1::62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99D3112D6B1 for <ietf@ietf.org>; Thu, 17 Mar 2016 00:59:33 -0700 (PDT)
Received: from aragorn.restena.lu (aragorn.restena.lu [IPv6:2001:a18:1:8::155]) by smtprelay.restena.lu (Postfix) with ESMTPS id C57D343AEE for <ietf@ietf.org>; Thu, 17 Mar 2016 08:59:31 +0100 (CET)
Subject: Re: ietf.org end-to-end principle
To: ietf@ietf.org
References: <56E90BF9.4090306@cisco.com> <871189680.1322359.1458113811142.JavaMail.yahoo@mail.yahoo.com> <CAHw9_i+yFhJVYvcMLSEgkOkqJjZBsQicCQsi13SaoVQuzxqc8g@mail.gmail.com> <5D6893D1-D61C-490C-91EF-CA5E5C1F484A@piuha.net>
From: Stefan Winter <stefan.winter@restena.lu>
Openpgp: id=AD3091F3AB24E05F4F722C03C0DE6A358A39DC66; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
Message-ID: <56EA63E3.2070602@restena.lu>
Date: Thu, 17 Mar 2016 08:59:31 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0
MIME-Version: 1.0
In-Reply-To: <5D6893D1-D61C-490C-91EF-CA5E5C1F484A@piuha.net>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="bLP6190kxrD9HreakdNBAqGBll9D2krHm"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/I0Bey42Nyl17Qt2Kya4TNzlye-M>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Mar 2016 07:59:37 -0000

Hi,

> The takeaway for me from this thread is problems with CAPTCHA’s, some situations where CAPTCHA’s don’t even appear, the tuning of various filters, and possible additional mirrors. I have asked the IETF tools and IT folks to take a look. This isn’t the only thing they are doing, so it will probably take some time to figure out what we can do. And they still must be able to deal with denial of service attacks from all over the Internet and not just Tor, and yes, the tools at our disposal will be imperfect, and yes, there will be some pain for some users as a result. They will do their best. Don’t expect miracles.

The takeaway for me is that the end-to-end principle is dead. The times
where all intelligence should be in end hosts only, no middleboxes, and
KISS have gone, and techniques going in the opposite direction are not
only in use, but even embraced by IETF operations.

We are discussing only how to tweak middleboxes to be better; rather
than discussing how best to get rid of middleboxes.

I believe this is actually a bad thing in a wider view: the IETF
advocates the use of encryption everywhere; and at the same time we see
that those wonderful middleboxes have a problem with encryption and
generate MITM like situations. Yet, we continue to use them.

There's a bit of a contradiction in here.

Greetings,

Stefan Winter

> I would also like to ask that we not dwell deeply on the goodness or not of Tor or any other networks or systems for that matter. We’re not here to pass judgment, but of course we try to enable access to IETF resources as widely as we can.
> 
> Jari
> 


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

v2.23.0 | Report a Bug | By Email