Re: secid review of draft-ietf-ipv6-deprecate-rh0-01
Joe Abley <jabley@ca.afilias.info> Tue, 02 October 2007 12:48 UTC
Return-path: <ietf-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IchAv-0001Gj-Eq; Tue, 02 Oct 2007 08:48:33 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IchAu-0001GW-6T for ietf@ietf.org; Tue, 02 Oct 2007 08:48:32 -0400
Received: from monster.hopcount.ca ([199.212.90.4]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IchAo-0008Vx-QT for ietf@ietf.org; Tue, 02 Oct 2007 08:48:32 -0400
Received: from [205.205.80.243] by monster.hopcount.ca with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.68 (FreeBSD)) (envelope-from <jabley@ca.afilias.info>) id 1IchAI-0008hC-SW; Tue, 02 Oct 2007 12:47:56 +0000
In-Reply-To: <4700B9C6.6040202@piuha.net>
References: <02c601c7feef$b6460730$6702a8c0@china.huawei.com> <4700B9C6.6040202@piuha.net>
Mime-Version: 1.0 (Apple Message framework v752.3)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <39B17A43-056A-4A67-A69F-D3669EEA3C97@ca.afilias.info>
Content-Transfer-Encoding: 7bit
From: Joe Abley <jabley@ca.afilias.info>
Date: Tue, 02 Oct 2007 08:46:42 -0400
To: Jari Arkko <jari.arkko@piuha.net>
X-Mailer: Apple Mail (2.752.3)
X-Spam-Score: 0.0 (/)
X-Scan-Signature: ffa9dfbbe7cc58b3fa6b8ae3e57b0aa3
Cc: 6man-chairs@tools.ietf.org, 'IETF discussion list' <ietf@ietf.org>, secdir@mit.edu, tim.polk@nist.gov, gnn@neville-neil.com, 'Sam Hartman' <hartmans-ietf@mit.edu>, psavola@funet.fi
Subject: Re: secid review of draft-ietf-ipv6-deprecate-rh0-01
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Errors-To: ietf-bounces@ietf.org
On 1-Oct-2007, at 0511, Jari Arkko wrote: > Hi David, and thanks for your review. Inline: > >> As such, the whole document is a security consideration. The >> vulnerability appears well-documented, and the guidelines for >> handling >> the deprecated RH0 are clear. > > Good. Just by-the-by, I noticed the first reports of peoples' "block-rh0" filters in live production networks taking hits yesterday. The notes I saw showed periods of low-volume, low-frequency packets with RH0, and also periods in which the traffic volume was noticeably higher. The reports I saw featured source addresses in CERNET in China. It was not obvious whether those had been spoofed. It is of course difficult go gauge the motivation for sending the packets when you're on the receiving end. However, I thought it noteworthy that such things had been seen, recently, in the wild. Joe _______________________________________________ Ietf mailing list Ietf@ietf.org https://www1.ietf.org/mailman/listinfo/ietf
- secid review of draft-ietf-ipv6-deprecate-rh0-01 David Harrington
- Re: secid review of draft-ietf-ipv6-deprecate-rh0… Sam Hartman
- Re: secid review of draft-ietf-ipv6-deprecate-rh0… Jari Arkko
- Re: secid review of draft-ietf-ipv6-deprecate-rh0… Joe Abley