Re: ISMS working group
Margaret Wasserman <margaret@thingmagic.com> Mon, 12 September 2005 14:05 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EEowN-0003n0-Qf; Mon, 12 Sep 2005 10:05:47 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EEowH-0003mA-Az; Mon, 12 Sep 2005 10:05:45 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA19484; Mon, 12 Sep 2005 10:05:29 -0400 (EDT)
Received: from [204.9.221.21] (helo=thingmagic.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EEp0I-0004Up-UN; Mon, 12 Sep 2005 10:09:52 -0400
Received: from [66.30.121.250] (account margaret HELO [192.168.2.7]) by thingmagic.com (CommuniGate Pro SMTP 4.1.8) with ESMTP-TLS id 516959; Mon, 12 Sep 2005 10:07:06 -0400
Mime-Version: 1.0
Message-Id: <p062007e2bf4b2b3db8dc@[192.168.2.7]>
In-Reply-To: <43257A17.1050101@cisco.com>
References: <431DD59A.4000400@ofcourseimright.com> <AE6514F0-4714-4A48-9F56-A155823489F2@moonhill.org> <p0620074bbf44d3d23a6d@[192.168.2.7]> <432531CB.3070109@cisco.com> <p062007e1bf4b28530a35@[192.168.2.7]> <43257A17.1050101@cisco.com>
Date: Mon, 12 Sep 2005 10:05:17 -0400
To: Eliot Lear <lear@cisco.com>
From: Margaret Wasserman <margaret@thingmagic.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 0ddefe323dd869ab027dbfff7eff0465
Cc: Eliot Lear <lear@ofcourseimright.com>, Ken Arnold <arnold@moonhill.org>, ietf@ietf.org, iesg@ietf.org
Subject: Re: ISMS working group
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org
Hi Eliot, I have, of course, read the draft that you cited below, but the term "call home" is not defined or used in that draft... The document does discuss the concept that either end of the SNMP exchange could initiate the BEEP connection at the transport level, but I don't see that it explains anywhere how/when/why a command responder would _decide_ (or even know how) to contact a command requestor and/or how a command responder could find a command requestor if it were not at a fixed, globally addressable location. IMO, there is a lot more to building a system that is capable of SNMP initiation in both directions than simply having a mechanism to set-up the transport connection from the command responder to the command generator. It would also be possible to set-up an SSH connection from either end, but I don't see how that even begins to offer the benefits that you've attributed to "call home". None of this seems very material to the ISMS discussion, though... Today SNMP (whether it is running over UDP or TCP) doesn't have the call home feature. Do you really think it is reasonable to tie the addition of that feature to the definition of a new security mechanism for the existing SNMP protocol? If so, why? IMO, we need to try to do our work in manageable chunks in the right groups/areas. A security area working group working on a new security mechanism for the existing SNMP model is one chunk. Perhaps an OPS area WG working on an optional SNMP call home mechanism is another...? I don't see how the level of change/disruption to the vendor community is substantially affected by whether these two separate mechanisms are defined in one IETF working group or two. Margaret At 2:52 PM +0200 9/12/05, Eliot Lear wrote: >Margaret Wasserman wrote: >> If you really believe that this solution is needed, I think you would do >> best to write a draft and _then_ try to get it adopted by an appropriate >> WG. > >I (amongst others) *did*. draft-kaushik-isms-btsm-01.txt. What had >been missing up until this point was an SSH draft. And the working >group developed consensus on this non-existent draft. You've got to be >impressed. > >Eliot _______________________________________________ Ietf mailing list Ietf@ietf.org https://www1.ietf.org/mailman/listinfo/ietf
- Re: ISMS working group Margaret Wasserman
- ISMS working group Ken Arnold
- Re: ISMS working group and charter problems Jim Thompson
- Re: ISMS working group Ken Arnold
- RE: ISMS working group Fleischman, Eric
- RE: ISMS working group Nelson, David
- RE: ISMS working group Daniel Senie
- Re: ISMS working group Eliot Lear
- Re: ISMS working group and a clarification about … Eliot Lear
- Re: ISMS working group Margaret Wasserman
- Re: ISMS working group Eliot Lear
- Re: ISMS working group Eliot Lear
- Re: ISMS working group Margaret Wasserman
- Re: ISMS working group Daniel Senie
- Re: ISMS working group Eliot Lear
- Re: ISMS working group Eliot Lear
- Re: ISMS working group Wes Hardaker
- Re: ISMS working group Brian E Carpenter