Malicious RFC standards ongoing threat
Stephane Bortzmeyer <bortzmeyer@nic.fr> Wed, 01 April 2020 08:43 UTC
Return-Path: <stephane@sources.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 088DE3A064C for <ietf@ietfa.amsl.com>; Wed, 1 Apr 2020 01:43:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.649
X-Spam-Level:
X-Spam-Status: No, score=-1.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P-eedL9J4ykT for <ietf@ietfa.amsl.com>; Wed, 1 Apr 2020 01:43:13 -0700 (PDT)
Received: from ayla.bortzmeyer.org (ayla.bortzmeyer.org [IPv6:2001:4b98:dc0:41:216:3eff:fe27:3d3f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5C1B53A0645 for <ietf@ietf.org>; Wed, 1 Apr 2020 01:43:12 -0700 (PDT)
Received: by ayla.bortzmeyer.org (Postfix, from userid 10) id 9CC5EA0279; Wed, 1 Apr 2020 10:43:09 +0200 (CEST)
Received: by mail.sources.org (Postfix, from userid 1000) id A925ECA9F2; Wed, 1 Apr 2020 10:40:21 +0200 (CEST)
Date: Wed, 01 Apr 2020 10:40:21 +0200
From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
To: ietf@ietf.org
Subject: Malicious RFC standards ongoing threat
Message-ID: <20200401084021.GA22250@sources.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
X-Transport: UUCP rules
X-Operating-System: Debian GNU/Linux 10.3
X-Charlie: Je suis Charlie
User-Agent: Mutt/1.10.1 (2018-07-13)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/h2C5RJucmJQS13aMZsLaVstzQTM>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Apr 2020 08:43:15 -0000
"Today, a threat actor known as the Internet Engineering Task Force (IETF), aka APT0, is likely to globally strike against networks through the periodic publication of malicious RFCs" https://media.cert.europa.eu/static/MEMO/2020/TLP-WHITE-TA-2020-420-malicious-rfcs-v1.0.pdf
- Malicious RFC standards ongoing threat Stephane Bortzmeyer
- Re: Malicious RFC standards ongoing threat Stephen Farrell
- Re: Malicious RFC standards ongoing threat Carsten Bormann
- Re: Malicious RFC standards ongoing threat Ali Mezgani
- Re: Malicious RFC standards ongoing threat Leif Johansson