IETF Logo Mail Archive

RE: Call for Community Feedback: Retiring IETF FTP Service

Roman Danyliw <rdd@cert.org> Wed, 18 November 2020 21:18 UTC

Return-Path: <rdd@cert.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 94D9E3A0CBB for <ietf@ietfa.amsl.com>; Wed, 18 Nov 2020 13:18:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o3cyM8FAmXeU for <ietf@ietfa.amsl.com>; Wed, 18 Nov 2020 13:18:08 -0800 (PST)
Received: from veto.sei.cmu.edu (veto.sei.cmu.edu [147.72.252.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A04623A0CBC for <ietf@ietf.org>; Wed, 18 Nov 2020 13:18:08 -0800 (PST)
Received: from delp.sei.cmu.edu (delp.sei.cmu.edu [10.64.21.31]) by veto.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0AILI6rP012806; Wed, 18 Nov 2020 16:18:07 -0500
DKIM-Filter: OpenDKIM Filter v2.11.0 veto.sei.cmu.edu 0AILI6rP012806
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1605734287; bh=wolbESeyOreHlbahKCs8HTryMAOcNFByMW0SYnpUdGQ=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=imWwbPRs+MM5jG4kWsWs3fBMQZ+ZnVI0IsXBNfrUM26TptXcEsgnjIWExKoE5lYiQ IrOFLMEDTBXGde01fObaYkAmTEQaG+i6EHPG2JufEl2AZJPo2f0LykunR3g0AQ6jbl pboSZXl11xw2LQ+pwtm48zOEuZfMy0ufdoRFVHpU=
Received: from MURIEL.ad.sei.cmu.edu (muriel.ad.sei.cmu.edu [147.72.252.47]) by delp.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0AILHxSq014985; Wed, 18 Nov 2020 16:18:04 -0500
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MURIEL.ad.sei.cmu.edu (147.72.252.47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Wed, 18 Nov 2020 16:17:59 -0500
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.2106.002; Wed, 18 Nov 2020 16:17:59 -0500
From: Roman Danyliw <rdd@cert.org>
To: Keith Moore <moore@network-heretics.com>, Ned Freed <ned.freed@mrochek.com>
CC: "ned+ietf@mauve.mrochek.com" <ned+ietf@mauve.mrochek.com>, "ietf@ietf.org" <ietf@ietf.org>
Subject: RE: Call for Community Feedback: Retiring IETF FTP Service
Thread-Topic: Call for Community Feedback: Retiring IETF FTP Service
Thread-Index: Ada3CD1BnAYFDyoMT8WUdvX4VBiWMQFJu10AAABKp4AADHZ9AAAA1a8AAAqaGQAAD5dtAAADcuSAAAdFdID//+X51///+JzggAEcj9f//9UNoIAA14OAgAA81CCAAEXFgIAAPYyQ
Date: Wed, 18 Nov 2020 21:17:58 +0000
Message-ID: <37e993ad382c423b90e11b4ca06a307e@cert.org>
References: <af6ab231024c478bbd28bbec0f9c69c9@cert.org> <0D41F3FD-BA1F-4716-A165-4FE7529431A9@vigilsec.com> <D26DCBB6-3997-4A73-BB46-867B4FD79BD2@eggert.org> <27b80ed2-76fb-aee7-f22d-de56019e9aa9@nostrum.com> <a8bdd67a-13ea-4433-aa38-9cfd48ea28da@network-heretics.com> <0e875497-9986-a0d9-8354-3eac26b7f882@nostrum.com> <a02e15f2-34fb-4124-7ba0-c0ee0070b39f@network-heretics.com> <6a29096e-c76e-9bde-388c-bf411b235346@nostrum.com> <6ff3c8a8-57c9-a278-51ce-ce24fd2dfc0e@network-heretics.com> <01RS3W7DNPHA005PTU@mauve.mrochek.com> <7057e29825514008a06b749cb5c476f6@cert.org> <01RS3Y1AZ65A0085YQ@mauve.mrochek.com> <365930470c214fbd982da633c69b3b67@cert.org> <5172d442-6bb0-0e11-81fb-3da6e828166e@network-heretics.com> <c7afe761c0264c1daa533cec1895f1af@cert.org> <2088e835-86ef-1896-d307-fc4433ec3b65@network-heretics.com>
In-Reply-To: <2088e835-86ef-1896-d307-fc4433ec3b65@network-heretics.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.202.48]
Content-Type: multipart/alternative; boundary="_000_37e993ad382c423b90e11b4ca06a307ecertorg_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/XA_pkg4blflJ7a7vNTdSMuczLlM>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2020 21:18:11 -0000

Hi!

From: Keith Moore <moore@network-heretics.com>
Sent: Wednesday, November 18, 2020 2:53 PM
To: Roman Danyliw <rdd@cert.org>; Ned Freed <ned.freed@mrochek.com>
Cc: ned+ietf@mauve.mrochek.com; ietf@ietf.org
Subject: Re: Call for Community Feedback: Retiring IETF FTP Service


On 11/18/20 2:25 PM, Roman Danyliw wrote:
Hi Keith,

From: Keith Moore <moore@network-heretics.com><mailto:moore@network-heretics.com>
Sent: Wednesday, November 18, 2020 7:06 AM
To: Roman Danyliw <rdd@cert.org><mailto:rdd@cert.org>; Ned Freed <ned.freed@mrochek.com><mailto:ned.freed@mrochek.com>
Cc: ned+ietf@mauve.mrochek.com<mailto:ned+ietf@mauve.mrochek.com>; ietf@ietf.org<mailto:ietf@ietf.org>
Subject: Re: Call for Community Feedback: Retiring IETF FTP Service


On 11/18/20 6:00 AM, Roman Danyliw wrote:

As I responded to Toerless [1], the primary users of FTP (by volume) don't appear to be disadvantaged:

The issue is not about the "primary" users (by volume).    (Remember, traffic volume is not an indicator of importance.)   This is an accessibility issue.   Would you consider it acceptable to deny access to IETF documents to sight- or hearing-impaired persons because "the primary users... don't appear to be disadvantaged"?   If not, why is it acceptable to deny access to those who cannot use crypto?

[Roman] The IETF should definitely try to ensure that there is pervasive access to its information.  Toerless asked the same question [1].  He was wondering if current FTP access was bridging access to other communities.

==[ snip ]==
Per the usage data [1], the 85th percentile of traffic comes from entities that don't strongly suggest they would mirror for unique access:


It's not the 85th percentile of traffic that you should be looking at.   It's the remaining 15 percent; the odd uses cases that aren't easily characterized.

[Roman] I’m no expert in accessibility technology, but what’s the basis to link the “sight- or hearing-impaired persons” population with FTP usage.

The "accessibility" issue I was referring to was also one that Ned was concerned about - are there people who cannot access RFCs and I-Ds because they can't use https and therefore crypto?   I don't think rsync suffices because it's designed for mirroring rather than file access.   (Accessibility isn't just about people with physical impairments.)

The reference to sight- or hearing-impaired persons was an analogy.  If you don't think they should be prevented from accessing RFCs and I-Ds, should those in countries that block https be prevented?   (For instance, some countries are currently blocking TLS 1.3 when using ESNI because they can't monitor what sites the browsers are talking to.)

[Roman] In case there is concern about the TLS configuration on www.ietf.org<http://www.ietf.org>, it is quite permissive to ensure flexibility .  See https://www.ssllabs.com/ssltest/analyze.html?d=www.ietf.org&s=104.16.45.99&hideResults=on.  TLS v1.0 – 1.3 is supported.  Likewise, the ciphersuites are extremely generous.

Roman

v2.23.0 | Report a Bug | By Email