Re: [Int-area] WGLC for draft-ietf-intarea-hostname-practice-02
Dave Thaler <dthaler@microsoft.com> Mon, 16 May 2016 21:01 UTC
Return-Path: <dthaler@microsoft.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 925B012DA6A for <int-area@ietfa.amsl.com>; Mon, 16 May 2016 14:01:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.003
X-Spam-Level:
X-Spam-Status: No, score=-102.003 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_WHITELIST=-100] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YFwlVdAYr1H6 for <int-area@ietfa.amsl.com>; Mon, 16 May 2016 14:01:51 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0122.outbound.protection.outlook.com [207.46.100.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C13EF12DA6B for <int-area@ietf.org>; Mon, 16 May 2016 14:01:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:To:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=XuVn8P7eRmTO3f4VhLwLs87EOicZrExFYDbZ3hCggE0=; b=SpM1eC7nuckK/ZlzrFfRMtbFTt69NXS/4bCJLC3TvgcJjHftbhAXTleBibMHUY2WlbURFioJ78oFaJJd0KqcRfkgwx+zqbU6XLEmOC5l8iI8oqeSDbQOPTPlZ+rIOszcoljh9sfFlitWqE7xU483y4A7SptpzdmEIu3UwP+evBE=
Received: from DM2PR0301MB0717.namprd03.prod.outlook.com (10.160.97.13) by DM2PR0301MB0720.namprd03.prod.outlook.com (10.160.97.140) with Microsoft SMTP Server (TLS) id 15.1.497.12; Mon, 16 May 2016 21:01:50 +0000
Received: from DM2PR0301MB0717.namprd03.prod.outlook.com ([10.160.97.13]) by DM2PR0301MB0717.namprd03.prod.outlook.com ([10.160.97.13]) with mapi id 15.01.0497.017; Mon, 16 May 2016 21:01:50 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Juan Carlos Zuniga <j.c.zuniga@ieee.org>, "int-area@ietf.org" <int-area@ietf.org>
Thread-Topic: [Int-area] WGLC for draft-ietf-intarea-hostname-practice-02
Thread-Index: AQHRr5C2Ai3gRUqhyUWJINiWUHFwtp+8Cr9Q
Date: Mon, 16 May 2016 21:01:49 +0000
Message-ID: <DM2PR0301MB0717408054FAFEB4432E9619A3770@DM2PR0301MB0717.namprd03.prod.outlook.com>
References: <389F0586-528E-45C8-8A79-A474AB1C1D5A@ieee.org>
In-Reply-To: <389F0586-528E-45C8-8A79-A474AB1C1D5A@ieee.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ieee.org; dkim=none (message not signed) header.d=none;ieee.org; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [12.130.117.179]
x-ms-office365-filtering-correlation-id: 492b00da-31fe-4308-b740-08d37dcd4cdd
x-microsoft-exchange-diagnostics: 1; DM2PR0301MB0720; 5:zqzCNnEzIvtKeND2cZT6G9t1rAJXkkqvF+A2JrhHQMhBV/ed991M9G8bcbM3AijIqD9DbUbfpc0CnJVnsp8cY7pzU77P7Awpm84gZoIHGLWkdovPi42zekjRgH82/VQMEzkNDXE5C7glgbzgtWyCDA==; 24:aTOYV3CguEMek0kVLejULaVNbRJBXDbxJjFLldgmn7l21xJhQoAG+mmi3r9l+ZWWn3pCukd1iV2db3jUaANBnKYhx2KBg/LB7CrB/WaycDo=; 7:i27ioWzJnTcGrdmJ/k9FghHzvyzv0FTIlz8g68I3iXYFtw1JSg7STrkg7YfHaE1MY/gMglYZ+neO9XUIys/0CEFCg2ov89G2mIq08JCdlegvsDQcQsHL2A9Fqv2zsJbdggsMrcmVd5vK4gxj4FlS/7qvfsVRD2Zrw7rfG642iBQAb02rtW/w29HDm9ciC1hAs1Qvggcbk+puCW0kFVcfSg==
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:DM2PR0301MB0720;
x-microsoft-antispam-prvs: <DM2PR0301MB07203D4C42525D9F6C3CB108A3770@DM2PR0301MB0720.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(601004)(2401047)(8121501046)(5005006)(3002001)(10201501046)(6055026)(61426038)(61427038); SRVR:DM2PR0301MB0720; BCL:0; PCL:0; RULEID:; SRVR:DM2PR0301MB0720;
x-forefront-prvs: 09443CAA7E
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(66066001)(77096005)(81166006)(8676002)(99286002)(106116001)(107886002)(189998001)(3660700001)(122556002)(2501003)(11100500001)(74316001)(3280700002)(2906002)(9686002)(87936001)(1220700001)(5004730100002)(3846002)(54356999)(5001770100001)(586003)(76176999)(50986999)(2900100001)(2950100001)(8936002)(5005710100001)(5002640100001)(76576001)(10290500002)(10400500002)(8990500004)(6116002)(10090500001)(102836003)(86362001)(86612001)(5003600100002)(230783001)(92566002)(5008740100001)(33656002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM2PR0301MB0720; H:DM2PR0301MB0717.namprd03.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2016 21:01:49.7699 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0301MB0720
Archived-At: <http://mailarchive.ietf.org/arch/msg/int-area/UER4SZ23jHfgXsyvfmEag8-tVhE>
Subject: Re: [Int-area] WGLC for draft-ietf-intarea-hostname-practice-02
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 May 2016 21:01:57 -0000
I just found a couple typos, and suggest one potential addition below… Grammar issue in -02: > Experiments on operational networks such as the IETF meeting network > have shown that with the help of external data such as the publicly > available IETF attendees list or other data sources such as LDAP > servers on the network can [TRAC2016], the identification of the > device owner can become trivial given only partial identifiers in a > hostname. I believe the “can” immediately before “[TRAC2016]” should be deleted. Section 4.4 grammar: > of a specific host on a network, by issuing a multicast requests to s/requests/request/ Another variation of leakage is where a *unicast* (rather than multicast) request is sent to a host in order to either ask it or its name(s), or ask it whether it has a specific name. Unicast queries are less discoverable by others (e.g. IDS’s) than multicast queries are. For example, mDNS and NetBIOS-over-TCPIP [RFC1002] both support unicast queries to ask if the host has a specific name, and the experimental [RFC4620] (probably not implemented in any real deployments) has a unicast mechanism for asking for all names of a host. Minimally, the section on “DNS Address to Name Resolution”, the document might add a sentence to the end of that section like “Other name lookup mechanisms, such as [RFC4620], share similar issues.” Section 4 already says it’s a non-exhaustive list though, so it’s ok to leave it as is if the WG prefers, but personally I think it would be useful to mention the class of unicast “ask the host” threats. Section 5 grammar: > picks a random > hostname and start publicizing that random name in protocols such as s/start/starts/ typo: > potential use and thread to a user's privacy. Obviously, further s/thread/threat/ Dave
- [Int-area] WGLC for draft-ietf-intarea-hostname-p… Juan Carlos Zuniga
- Re: [Int-area] WGLC for draft-ietf-intarea-hostna… Dave Thaler