IETF Logo Mail Archive

RE: TLS access Re: Call for Community Feedback: Retiring IETF FTP Service

Roman Danyliw <rdd@cert.org> Mon, 07 December 2020 00:30 UTC

Return-Path: <rdd@cert.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 742183A0DDC for <ietf@ietfa.amsl.com>; Sun, 6 Dec 2020 16:30:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FQcgXhjExhja for <ietf@ietfa.amsl.com>; Sun, 6 Dec 2020 16:30:29 -0800 (PST)
Received: from taper.sei.cmu.edu (taper.sei.cmu.edu [147.72.252.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 931DE3A0DD9 for <ietf@ietf.org>; Sun, 6 Dec 2020 16:30:28 -0800 (PST)
Received: from korb.sei.cmu.edu (korb.sei.cmu.edu [10.64.21.30]) by taper.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0B70UQvA012509; Sun, 6 Dec 2020 19:30:26 -0500
DKIM-Filter: OpenDKIM Filter v2.11.0 taper.sei.cmu.edu 0B70UQvA012509
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1607301026; bh=rmqTRtf4F8FwlAPfVb0waPmnpGubKKrU+xDlIHT+yGo=; h=From:To:Subject:Date:References:In-Reply-To:From; b=bJ9xVxF2QegH36cMY+ddydTB+MDZIG6+9npoXxDhTKQiAVwP0OJwcdFSKy26XLQbt oizdbts7KmLOYfV1vmGhp+6sDcbt4n1jdivS5ysR3jzCQzcnMurjRvVcMMR0fwWjBF z7kUSpqzhIA4JNP12CGYEQZ/yVR9u1uaALeuPLA0=
Received: from MORRIS.ad.sei.cmu.edu (morris.ad.sei.cmu.edu [147.72.252.46]) by korb.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0B70UL4m001837; Sun, 6 Dec 2020 19:30:21 -0500
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MORRIS.ad.sei.cmu.edu (147.72.252.46) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Sun, 6 Dec 2020 19:30:21 -0500
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.2106.002; Sun, 6 Dec 2020 19:30:20 -0500
From: Roman Danyliw <rdd@cert.org>
To: Keith Moore <moore@network-heretics.com>, "ietf@ietf.org" <ietf@ietf.org>
Subject: RE: TLS access Re: Call for Community Feedback: Retiring IETF FTP Service
Thread-Topic: TLS access Re: Call for Community Feedback: Retiring IETF FTP Service
Thread-Index: AdbKUMqHrpurekIOiEKqmE5VD8HfRwAqXA2AAEwXhsA=
Date: Mon, 07 Dec 2020 00:30:20 +0000
Message-ID: <9963975c3bf8484aa041d01c9585e77f@cert.org>
References: <af6ab231024c478bbd28bbec0f9c69c9@cert.org> <a02e15f2-34fb-4124-7ba0-c0ee0070b39f@network-heretics.com> <6a29096e-c76e-9bde-388c-bf411b235346@nostrum.com> <6ff3c8a8-57c9-a278-51ce-ce24fd2dfc0e@network-heretics.com> <01RS3W7DNPHA005PTU@mauve.mrochek.com> <7057e29825514008a06b749cb5c476f6@cert.org> <01RS3Y1AZ65A0085YQ@mauve.mrochek.com> <365930470c214fbd982da633c69b3b67@cert.org> <5172d442-6bb0-0e11-81fb-3da6e828166e@network-heretics.com> <c7afe761c0264c1daa533cec1895f1af@cert.org> <2088e835-86ef-1896-d307-fc4433ec3b65@network-heretics.com> <37e993ad382c423b90e11b4ca06a307e@cert.org> <f8e0951c-d655-31e4-63bc-357b1085b358@network-heretics.com> <5FB667B1.8000702@btconnect.com> <ee4a65123d7a4011be9b04b3408d1bea@cert.org> <1049FA76-DCB8-4735-8947-6D5CC0144C9F@akamai.com> <51819065ed01416181f85e333720d4d1@cert.org> <169D0283-F253-4E08-B50E-6E86BE333EBC@akamai.com> <46160C79-FAA7-40B1-A00A-0DAAF1470130@vigilsec.com> <8f49f6f057804c2e9bc199df5b7e7ec6@cert.org> <f60a1260-0a7a-90c7-ddd9-82117c21d0f4@network-heretics.com>
In-Reply-To: <f60a1260-0a7a-90c7-ddd9-82117c21d0f4@network-heretics.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.202.131]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/MK9jYhZdDjvihz3Ak3x6CSxaNLU>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Dec 2020 00:30:31 -0000

Hi Keith!

> -----Original Message-----
> From: ietf <ietf-bounces@ietf.org> On Behalf Of Keith Moore
> Sent: Saturday, December 5, 2020 1:32 AM
> To: ietf@ietf.org
> Subject: Re: TLS access Re: Call for Community Feedback: Retiring IETF FTP
> Service
> 
> Again, I find this analysis flawed to the point that it's useless or nearly so.
> 
> The first rule in reporting stats, at least if you want them to be taken seriously,
> is to describe the methods and results separately, and separately from any
> conclusions.

I have noted your concern and objection in the working summary.  See https://github.com/ietf/ftp-retirement-consult-2020/commit/3f96335fc213424288eafd212ff925dd809f790b

> The sampling period is far too short to be meaningful.   If there were only 91
> unique users for a whole year, that's very different than only
> 91 unique users over 12 days.   But 91 users (if they're  IETF
> participants) would be a significant fraction of active IETF participants.
>
> Relationship between FTP and HTTP traffic volume seems irrelevant. Again,
> traffic volume is not an indicator of importance.   So why keep citing it?

I keep citing the HTTP numbers because they provide context to the FTP numbers.

I will say upfront that I don't know the entire population size of "active IETF participants".  However, if we say that all 91, or even 140, IP addresses seen in FTP (let's include the search engines) are active IETF users.  I see no reason why not to also count the >500,000 IP addresses that used HTTP as active IETF participants (see Section 2 of the "12 Days in the life ..." charts).  Comparing 140 to >500,000 doesn't seem to align with calling this number a "significant fraction" (as its 0.02%).

Regards,
Roman

> The conclusions made e.g. "99% of all FTP traffic.." are almost certainly not
> warranted by the raw data, but the raw data aren't reported (not even
> anonymized, not even in summary form).
> 
> Keith
>

v2.23.0 | Report a Bug | By Email