IETF Logo Mail Archive

[Int-area] Re draft-daveor-cgn-logging-02/RFC6302

Dave O'Reilly <rfc@daveor.com> Tue, 20 March 2018 13:45 UTC

Return-Path: <rfc@daveor.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 641481270AE for <int-area@ietfa.amsl.com>; Tue, 20 Mar 2018 06:45:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=daveor.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rP8O8IPmZENF for <int-area@ietfa.amsl.com>; Tue, 20 Mar 2018 06:45:34 -0700 (PDT)
Received: from vps.ftrsolutions.com (vps.ftrsolutions.com [5.77.39.21]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 832AC124B17 for <int-area@ietf.org>; Tue, 20 Mar 2018 06:45:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=daveor.com; s=default; h=Mime-Version:To:Date:Message-Id:Subject: Content-Transfer-Encoding:Content-Type:From:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=LHg7oqlLDmuepeKkal/VFpTta2fBfpwS+Vkl1stnbYE=; b=X9fEot7hPUx1V/W0mh8dkcrHJL kxCsG4F0nQf2chDCkYWDn2vt10dqR6SrLiSsAbq0ktLY5tZQvyg32RfnRM9FwD4w0s/rBtVCKrTgH Da6aWV/Dx4HXWv3eGOCgEZ2xF/RofFUn7UR3VUWznP8Sw3e1dpB5O7CUMVCxLJBGd2SY=;
Received: from 86-44-56-31-dynamic.agg7.bsn.cld-dbn.eircom.net ([86.44.56.31]:55225 helo=[192.168.1.28]) by vps.ftrsolutions.com with esmtpsa (TLSv1:ECDHE-RSA-AES256-SHA:256) (Exim 4.89_1) (envelope-from <rfc@daveor.com>) id 1eyHa0-000BEu-PE for int-area@ietf.org; Tue, 20 Mar 2018 13:45:32 +0000
From: Dave O'Reilly <rfc@daveor.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Message-Id: <CE7E9C19-E906-48A8-B2DF-C86C48C1D95D@daveor.com>
Date: Tue, 20 Mar 2018 13:45:32 +0000
To: int-area@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
X-Mailer: Apple Mail (2.3124)
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - vps.ftrsolutions.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - daveor.com
X-Get-Message-Sender-Via: vps.ftrsolutions.com: authenticated_id: dave@daveor.com
X-Authenticated-Sender: vps.ftrsolutions.com: dave@daveor.com
X-Source:
X-Source-Args:
X-Source-Dir:
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/JlkQhuAJNIZsfHsN3sIEWBnEe1o>
Subject: [Int-area] Re draft-daveor-cgn-logging-02/RFC6302
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Mar 2018 13:45:36 -0000

Dear all,

further to presenting at IETF-101 yesterday I wanted to send a follow up email to see if there is interest in working on a new best current practice for logging at internet-facing servers. 

I hope I adequately presented the reasons why I think there needs to be some revision of the recommendations of RFC6302 and that there is some additional points to be considered in draft-daveor-cgn-logging-02. 

The current version of the document (draft-daveor-cgn-logging-02) contains recommendations, but it is not really in the form of a BCP. If there is interest, I would like to suggest, in the first instance at least, that I prepare a new version of the document, structured in the form of a BCP with a set of recommendations for discussion. 

Any feedback would be appreciated.

Thanks and best regards,
daveor

v2.23.0 | Report a Bug | By Email