Re: [IPsec] Status of draft-ietf-ipsecme-ddos-protection
"Valery Smyslov" <svanru@gmail.com> Tue, 31 May 2016 05:01 UTC
Return-Path: <svanru@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B846F12B008 for <ipsec@ietfa.amsl.com>; Mon, 30 May 2016 22:01:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.93
X-Spam-Level:
X-Spam-Status: No, score=-1.93 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_SORBS_WEB=0.77, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v1WdQE308TK5 for <ipsec@ietfa.amsl.com>; Mon, 30 May 2016 22:01:33 -0700 (PDT)
Received: from mail-lf0-x236.google.com (mail-lf0-x236.google.com [IPv6:2a00:1450:4010:c07::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5309812D0DA for <ipsec@ietf.org>; Mon, 30 May 2016 22:01:33 -0700 (PDT)
Received: by mail-lf0-x236.google.com with SMTP id k98so82348155lfi.1 for <ipsec@ietf.org>; Mon, 30 May 2016 22:01:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:from:to:cc:references:subject:date:mime-version :content-transfer-encoding; bh=omGVMb/D+oHfnhefS0zlD6lv0ohr6w1DbMH2JVBgmU0=; b=Zlp3X7K0Daht1Oy63R6YZXLXdl1c8HfhjRnLZZOnQWFxNtMDRrLow2PVxbYo5lCJmt a5adDsQh6trHbMZunXL4MTu2JYbBH/HTIStNMslwCNKKOoEHTN1nA+gih3KAQRyZcbOw /1RuDpKboitiaXuY4GD9MvDMCnHRQbHHvZ/4l3JUEqmZD0qIa/gB1etf3cnpmn/mHhdt 3hKTuFELc3oSCNNKo2dfcIdnxpJgRSqUrNTt9Su6bDrI//jsEygEmdMQUTfGiBm312u2 ktgCylk9utzZ4VDPqE73OHFMlSnP8UkUkpO2ZF8h83XmTJNNZKCuip3aybBsnsf2VE6H 5ocg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:from:to:cc:references:subject:date :mime-version:content-transfer-encoding; bh=omGVMb/D+oHfnhefS0zlD6lv0ohr6w1DbMH2JVBgmU0=; b=AvLF83UDpfbnMQ2BnamKcoaZfRNHbWIoWvCBeTVJUSwt/jlliuEBs2hQUTwUnX67uJ bB50zUSMClP/5CWE+sx0v6YryYOPM7BVMS1c3O8/00uyKDzJX2qtaRglfmUmmQvYsLI+ lxFVRvK7773P18eaynzIcfZ4mte8Mjgj+PwT0RAOJiSpTvVASW0qvG73FlUpVjasACv+ VhKG+kYb63h4Mey3sI+aCJh4bM/yoPUx5hcF9IMiGabkO68ZQMfTxkN0HTsF9/teMvHx A7wbZoxl3y7vdwZ2Koj4I40vxHmZry4Zf289XCr22mdERybY5g1TJt9NOb+cfoNa9Ney i5kg==
X-Gm-Message-State: ALyK8tJF4jag14yBW33ffupML7Q0ZLern+en0aQXYJx8KeCPkTRk/N93tuQrUaeHCDzd7A==
X-Received: by 10.25.155.206 with SMTP id d197mr2756294lfe.121.1464670891278; Mon, 30 May 2016 22:01:31 -0700 (PDT)
Received: from buildpc ([82.138.51.4]) by smtp.gmail.com with ESMTPSA id 66sm2758342ljf.8.2016.05.30.22.01.30 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 30 May 2016 22:01:30 -0700 (PDT)
Message-ID: <C2083AF9EC484C129737FE456527D2F4@buildpc>
From: Valery Smyslov <svanru@gmail.com>
To: Paul Wouters <paul@nohats.ca>
References: <860C938B60E24C76A1749A1563D53A55@buildpc> <alpine.LRH.2.20.1605301312210.8086@bofh.nohats.ca>
Date: Tue, 31 May 2016 08:01:24 +0300
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="response"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5931
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipsec/MVh5hpqMpyVmUIVI5I9tGMS8HrI>
Cc: ipsec@ietf.org
Subject: Re: [IPsec] Status of draft-ietf-ipsecme-ddos-protection
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 05:01:36 -0000
Hi Paul, >> On the other hand, if we go this way and give the puzzles stuff an >> Experimantal status, then probably very few vendors (if any) will implement >> it and the real problem of defending against >> (D)DoS attacks will remain unaddressed. > > I don't think the puzzles implementation adoption will be much different from > whether it is part of the ddos document or a stand-alone document. The concern is not about stand-alone puzzles document. It is about an Experimental status of that document versus Standards Track in the current draft. Vendors tend to ignore Experimental RFCs. > Paul Regards, Valery.
- [IPsec] Status of draft-ietf-ipsecme-ddos-protect… Valery Smyslov
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Yoav Nir
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Paul Wouters
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Valery Smyslov
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Yoav Nir
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Valery Smyslov
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Waltermire, David A. (Fed)
- Re: [IPsec] Status of draft-ietf-ipsecme-ddos-pro… Paul Wouters