Re: Late Last Call + Gen-ART review of draft-ietf-nfsv4-rfc1831bis-10
Robert Thurlow <robert.thurlow@sun.com> Sat, 13 December 2008 16:46 UTC
Return-Path: <ietf-bounces@ietf.org>
X-Original-To: ietf-archive@megatron.ietf.org
Delivered-To: ietfarch-ietf-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A28A03A6891; Sat, 13 Dec 2008 08:46:25 -0800 (PST)
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C350C3A68FF; Fri, 12 Dec 2008 16:42:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.871
X-Spam-Level:
X-Spam-Status: No, score=-5.871 tagged_above=-999 required=5 tests=[AWL=0.175, BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qd2rAoEwyHWg; Fri, 12 Dec 2008 16:42:25 -0800 (PST)
Received: from brmea-mail-1.sun.com (brmea-mail-1.Sun.COM [192.18.98.31]) by core3.amsl.com (Postfix) with ESMTP id E7C7E3A68F4; Fri, 12 Dec 2008 16:42:24 -0800 (PST)
Received: from jurassic-x4600.sfbay.sun.com ([129.146.17.59]) by brmea-mail-1.sun.com (8.13.6+Sun/8.12.9) with ESMTP id mBD0gGak028410; Sat, 13 Dec 2008 00:42:17 GMT
Received: from [10.7.250.168] (punchin-client-10-7-250-168.SFBay.Sun.COM [10.7.250.168]) by jurassic-x4600.sfbay.sun.com (8.14.3+Sun/8.14.3) with ESMTP id mBD0gFvf856157; Fri, 12 Dec 2008 16:42:15 -0800 (PST)
Message-ID: <494304E6.8070806@sun.com>
Date: Fri, 12 Dec 2008 17:42:14 -0700
From: Robert Thurlow <robert.thurlow@sun.com>
User-Agent: Thunderbird 2.0.0.16 (X11/20080811)
MIME-Version: 1.0
To: Christian Vogt <christian.vogt@ericsson.com>
Subject: Re: Late Last Call + Gen-ART review of draft-ietf-nfsv4-rfc1831bis-10
References: <F76BA305-C2EB-438D-BF0C-040689F1B732@ericsson.com>
In-Reply-To: <F76BA305-C2EB-438D-BF0C-040689F1B732@ericsson.com>
X-Mailman-Approved-At: Sat, 13 Dec 2008 08:46:24 -0800
Cc: Gen-ART Mailing List <gen-art@ietf.org>, nfsv4-chairs@tools.ietf.org, IETF Discussion Mailing List <ietf@ietf.org>, nfsv4-ads@tools.ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org
Christian Vogt wrote: > However, one aspect where I found the document to be insufficient is in > the specification of security methods. The documents does list possible > security methods, but it neither specifies them, nor does it state a > mandatory-to-support method other than null-authentication. I am aware > that the predecessor document, RFC 1831 also did not attend to security > methods any more carefully. But the security-related requirements for > IETF documents have become stricter since the publication of the > predecessor document in 1995, which implies that this document would > need to pay more attention to security-related aspects. So far, protocols building on top of RPC have specified themselves that RPCSEC_GSS is mandatory to implement. I have added the following wording to the security considerations to address another comment: Standards-track RPC services MUST mandate support for RPCSEC_GSS, and MUST mandate support for an authentication pseudo-flavor with appropriate levels of security, depending on the need for simple authentication, integrity a.k.a. non-repudiation, or data privacy. Does this address your concern as worded? If not, we will have to address the circular normative references issue that I'm grappling with. > Suggestion: Could the list of possible security methods (alias > "security flavors") be limited to those for which there are clear > protocol specifications? E.g., one of the possible methods, AUTH_DH, > currently refers to an academic publication rather than a protocol > specification. That's insufficient. And could one of the non-null > security methods be made mandatory? I have mentioned that I believe these have historical value only, and I think that only AUTH_NONE, AUTH_SYS and RPCSEC_GSS are interesting enough to be used at all by IETF protocols. I have added the following wording to address another comment: AUTH_DH as mentioned in sections 8.2 and 13.4.2 is considered obsolete and insecure; see [RFC2695]. AUTH_SYS SHOULD NOT be used for services which permit clients to modify data. AUTH_DH MUST NOT be specified as RECOMMENDED or REQUIRED for any standards-track RPC service. Does this address your concern as worded? If there is consensus that we should not mention anything for historical purposes, I can delete references to AUTH_DH and probably AUTH_SHORT. This is easier if we get the current auth list publically available. Rob T _______________________________________________ Ietf mailing list Ietf@ietf.org https://www.ietf.org/mailman/listinfo/ietf
- Late Last Call + Gen-ART review of draft-ietf-nfs… Christian Vogt
- Re: Late Last Call + Gen-ART review of draft-ietf… Robert Thurlow