Further IESG feedback on draft-crispin-imapv-17.txt
ned.freed@mrochek.com Thu, 19 September 2002 17:49 UTC
Received: from localhost (localhost [[UNIX: localhost]]) by above.proper.com (8.11.6/8.11.3) id g8JHn9Q16984 for ietf-imapext-bks; Thu, 19 Sep 2002 10:49:09 -0700 (PDT)
Received: from mauve.mrochek.com (mauve.mrochek.com [209.55.107.55]) by above.proper.com (8.11.6/8.11.3) with ESMTP id g8JHn8k16980 for <ietf-imapext@imc.org>; Thu, 19 Sep 2002 10:49:08 -0700 (PDT)
Received: from mauve.mrochek.com by mauve.mrochek.com (PMDF V6.1-1 #35243) id <01KMOJL410O000628S@mauve.mrochek.com> for ietf-imapext@imc.org; Thu, 19 Sep 2002 10:49:08 -0700 (PDT)
Date: Thu, 19 Sep 2002 10:34:10 -0700
From: ned.freed@mrochek.com
Subject: Further IESG feedback on draft-crispin-imapv-17.txt
To: IMAP Mailing Liste <imap@u.washington.edu>, IMAP Extensions WG <ietf-imapext@imc.org>
Cc: ned.freed@mrochek.com, paf@cisco.com, jis@mit.edu
Message-id: <01KMOKNGXORY00628S@mauve.mrochek.com>
MIME-version: 1.0
Content-type: TEXT/PLAIN; CHARSET="us-ascii"
Content-transfer-encoding: 7bit
Sender: owner-ietf-imapext@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-imapext/mail-archive/>
List-ID: <ietf-imapext.imc.org>
List-Unsubscribe: <mailto:ietf-imapext-request@imc.org?body=unsubscribe>
The IESG had this on the agenda today. The various document nits seem to have
been satisfactorily addressed. The IESG is also happy with the general way the
big item in the previous feedback -- mandatory to implement security -- has
been dealt with.
One concern remains, however. The following note appears in 6.2.1:
Note: a server implementation SHOULD NOT permit any
plaintext password mechanisms unless the STARTTLS
command described in [IMAP-TLS] has been negotiated.
Client and server implementations SHOULD implement
additional SASL mechanisms which do not use plaintext
passwords, such the GSSAPI mechanism described in [SASL]
and/or the [DIGEST-MD5] mechanism.
The IESG would like to push back even harder on the use of plain text
passwords, and would like to see this changed to read:
Note: a server implementation MUST NOT permit any
plaintext password mechanisms unless the STARTTLS
command described in [IMAP-TLS] has been negotiated or some
other mechanism that protects the session from password
snooping has been provided. Client and server implementations
SHOULD implement additional SASL mechanisms which do not use
plaintext passwords, such the GSSAPI mechanism described in
[SASL] and/or the [DIGEST-MD5] mechanism.
The reason the IESG would like to see this change made should be obvious, but
in case it is not: The IESG wants to mandate the use of mechanisms that insure
password snooping isn't possible but recognizes that there are many ways to do
this besides TLS: SSH, VPNs, physical network security, etc.
How do people feel about making this change?
Ned
- re: Further IESG feedback on draft-crispin-imapv-… ned.freed
- RE: Further IESG feedback on draft-crispin-imapv-… Mark Crispin
- RE: Further IESG feedback on draft-crispin-imapv-… ned.freed
- RE: Further IESG feedback on draft-crispin-imapv-… Larry Osterman
- re: Further IESG feedback on draft-crispin-imapv-… Mark Crispin
- Re: Further IESG feedback on draft-crispin-imapv-… ned.freed
- Re: Further IESG feedback on draft-crispin-imapv-… Mark Crispin
- Re: Further IESG feedback on draft-crispin-imapv-… ned.freed
- Re: Further IESG feedback on draft-crispin-imapv-… Cyrus Daboo
- Re: Further IESG feedback on draft-crispin-imapv-… Jeffrey I. Schiller
- Re: Further IESG feedback on draft-crispin-imapv-… Jeffrey I. Schiller
- Re: Further IESG feedback on draft-crispin-imapv-… Mark Crispin
- Re: Further IESG feedback on draft-crispin-imapv-… Steve Hole
- Re: Further IESG feedback on draft-crispin-imapv-… Chris Newman
- RE: Further IESG feedback on draft-crispin-imapv-… Mark Crispin
- RE: Further IESG feedback on draft-crispin-imapv-… Larry Osterman
- Further IESG feedback on draft-crispin-imapv-17.t… ned.freed