Re: Death by extension header (was:RE: New Version Notification for draft-li-6man-hbh-fwd-hdr-00.txt)
Gyan Mishra <hayabusagsm@gmail.com> Tue, 14 July 2020 06:37 UTC
Return-Path: <hayabusagsm@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C74963A114C for <ipv6@ietfa.amsl.com>; Mon, 13 Jul 2020 23:37:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.087
X-Spam-Level:
X-Spam-Status: No, score=-2.087 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a4P6ysTWnnj9 for <ipv6@ietfa.amsl.com>; Mon, 13 Jul 2020 23:37:24 -0700 (PDT)
Received: from mail-io1-xd2f.google.com (mail-io1-xd2f.google.com [IPv6:2607:f8b0:4864:20::d2f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB2C23A114A for <6man@ietf.org>; Mon, 13 Jul 2020 23:37:23 -0700 (PDT)
Received: by mail-io1-xd2f.google.com with SMTP id l17so4641671iok.7 for <6man@ietf.org>; Mon, 13 Jul 2020 23:37:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=FCDef3EAX3IfLLMK4KW/rX8FebDjntNsGpGn4haYdcw=; b=jdA6y3pN05qS8RAqMRjFXo0VuW2yHB4wJLUcXm9xF+1Yki4PXBB8x4GqpKV9ysd2ql bU68eVZibwdalR7o5460ugPpUOoWSyJMYJ5c1HLPojeenBJVbUuZR7TBY7UW0cR4xXNu +2d6xYgGtn4u/vpXycbU7eaYYuj2E6pag7M4v1Su72PVoN1igdUWTprq3i61bRwYqPHg AuYVmgu7vu0yUryPFXD5riR4grnvkkNb9R7Z/Ph0tVvBjfU/c+i9lzqHDyUDNEkzabQu VrzhBgus8EERAHStflw2aBVyLRG1Y2UjHz5VRpRfa/7U/dN73qKbd0CYyUYGwRT7H0Od ipPg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FCDef3EAX3IfLLMK4KW/rX8FebDjntNsGpGn4haYdcw=; b=BpzxwEXok0+DWwju0MUb6idPBt5PwZU0pny3krhm9jsWC+otX3wxfFdoqv5x/KlRo2 U5mSk+j3RFlJ7SJ5HZycuX3RvA6EWW+oAlydCNio576Yb5kghimSGjD8ovDqiM/Fqlzk YWmCmZnaEhl9FdIProxTFt3pdoDWgJB5WvuOhhi+Ih+dPyE7kuTXA50ZxGY4CTCFo4fM sHcnzpw+bE9D+4k409/OBr/Spnd82ZwfVVTecGlGTzOeXlUiuQnZR7vj005s8EeGpMYc cNPhXPJnpMKpiapgGDmkyA4jtha9MOhWiDrnGiNZAz8yZm6Hnv35Ez7FcWwNLpn8PEQQ y6xg==
X-Gm-Message-State: AOAM530TaGSdMVMf8yBb5e3/RVyNYGF38fd3JL6EgbAM+GruzunIhsTl vRawXzyC7uXXhzPTRvjMgYPiYpe6k2ITY06WzAY=
X-Google-Smtp-Source: ABdhPJzPptfg7ObSMynBUbW0PwSXaOSbdGDyMqgOPlCbXL7VScSa8THCX3hRnmEoBfjddxllGx2MCdq2wtk2bIoDwvY=
X-Received: by 2002:a6b:d31a:: with SMTP id s26mr3567806iob.48.1594708642971; Mon, 13 Jul 2020 23:37:22 -0700 (PDT)
MIME-Version: 1.0
References: <DM6PR05MB6348708352E1EE4421A61D63AE650@DM6PR05MB6348.namprd05.prod.outlook.com> <CALx6S34e21BLHRfx+p7agrzzDsx-M-XxB6cZQnWc-d0wqSesRQ@mail.gmail.com> <DM6PR05MB6348BCE5DDB6A8AF52D04FFAAE650@DM6PR05MB6348.namprd05.prod.outlook.com> <20200713191832.GC38490@faui48f.informatik.uni-erlangen.de> <CALx6S34TzXzHY1SK7te6-bcxO8V=kE1+o1AjL2S2oAPVTNbTBg@mail.gmail.com> <4278D47A901B3041A737953BAA078ADE19160AFC@DGGEML532-MBX.china.huawei.com>
In-Reply-To: <4278D47A901B3041A737953BAA078ADE19160AFC@DGGEML532-MBX.china.huawei.com>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Tue, 14 Jul 2020 02:37:12 -0400
Message-ID: <CABNhwV1w0JS0Rz-8KWUGAZ8o577=ciWgVXn9SLxS-sA5mjsRHA@mail.gmail.com>
Subject: Re: Death by extension header (was:RE: New Version Notification for draft-li-6man-hbh-fwd-hdr-00.txt)
To: "Pengshuping (Peng Shuping)" <pengshuping@huawei.com>
Cc: "6man@ietf.org" <6man@ietf.org>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>, Toerless Eckert <tte@cs.fau.de>, Tom Herbert <tom@herbertland.com>
Content-Type: multipart/alternative; boundary="0000000000002f44a605aa610a99"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/2zowEvzas1z22P4jyIPA1Zhbqpc>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jul 2020 06:37:27 -0000
>From a historical perspective the slow path and fast path has some vendor connotations into it “cxxxx”. I think any document within the IETF should stay clear of anything that is a vendor terminology. The concept of “punt” meanIng send to control plane also has vendor connotation and should not be used. I personally like control plane and data plane processing of extension headers. Gyan On Mon, Jul 13, 2020 at 11:35 PM Pengshuping (Peng Shuping) < pengshuping@huawei.com> wrote: > > > > -----Original Message----- > > From: ipv6 [mailto:ipv6-bounces@ietf.org] On Behalf Of Tom Herbert > > Sent: Tuesday, July 14, 2020 3:31 AM > > To: Toerless Eckert <tte@cs.fau.de> > > Cc: Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>; 6man@ietf.org > > Subject: Re: Death by extension header (was:RE: New Version Notification > > for draft-li-6man-hbh-fwd-hdr-00.txt) > > > > On Mon, Jul 13, 2020 at 12:18 PM Toerless Eckert <tte@cs.fau.de> wrote: > > > > > > And now find me any single IETF RFC that even uses the term slow-path > > > and fast-path to formalize requirements against them. We are just not > > > explicit enough about this. Hence my example of redooing router-alert > > > as the most simple example. Not that i think this would be most > > > important, but just to make the community consider that we need to be > > > more diligent about protocol specs in this respect. > > > > > > > Toerless, > > > > I wouldn't expect any IETF to use the term "slow path" and "fast path". > RFCs > > tend to describe protocol behavior and generally themselves don't care > > whether they are processed in a slow path or fast path as long as the > > external behavior is conformant. If you want to make these terms > explicit it > > seems like we would need to quantify in exact terms what a slow path is > and > > exactly what a fast path is-- that is, they need normative definitions > if we are > > to set normative requirements around them. > > But do we still need to differentiate "control plane" and "forwarding > plane"? The processing capability in bps and pps of the two planes are > different, so the corresponding terms are used as "slow path" and "fast > path", respectively. > > There are some HBH options such as RA* that carry the information that > need to be consumed by the "control plane", so they will be sent to the > "control plane" anyway. While other HBH options carry the information that > will not be consumed by the "control plane" but still sent to the "control > plane" / "slow path", which cause problems. > > * > https://www.iana.org/assignments/ipv6-routeralert-values/ipv6-routeralert-values.xhtml#ipv6-routeralert-values-1 > > Shuping > > > > > Tom > > > > > Some maximum amount of fast-path extensions is already in specs as an > > > example, but it too is not comprehensive enough to feel more confident > > > about safe extensibility. > > > > > > And we need to break free of the rfc8200 constraints whenever we > > > deploy the network protocol in controlled networks. rfc8200 is such a > > > career limiter when comparing IPv6 with MPLS for this type of > > > use-cases. Not to speak of the unnecessary long addresses. > > > > > > Oh well... > > > > > > Cheers > > > Toerless > > > > > > On Fri, Jul 10, 2020 at 06:43:59PM +0000, Ron Bonica wrote: > > > > Tom, > > > > > > > > Given that you parse the extension header chain on the fast path, HBH > > and destination options can be categorized as follows: > > > > > > > > 1) unrecognized (ACT 00, 01, 10, and 11) > > > > 2) recognized and processed on the fast path > > > > 3) recognized and processed on the slow path > > > > > > > > Types 1 and 2 cannot be used in a DoS attack, because they are never > > sent to the slow path. Type 3 is the dangerous one. > > > > > > > > I think that an implementation is safe if it only recognizes options > that it > > can process on the fast path. It may also be safe if it severely rate > limits > > packets as it sends them to the slow path. > > > > > > > > > > > > Ron > > > > > > > > > > > > > > > > > > > > > > > > Juniper Business Use Only > > > > > > > > -----Original Message----- > > > > From: Tom Herbert <tom@herbertland.com> > > > > Sent: Friday, July 10, 2020 2:29 PM > > > > To: Ron Bonica <rbonica@juniper.net> > > > > Cc: Pengshuping (Peng Shuping) <pengshuping@huawei.com>; > > > > 6man@ietf.org > > > > Subject: Re: Death by extension header (was:RE: New Version > > > > Notification for draft-li-6man-hbh-fwd-hdr-00.txt) > > > > > > > > [External Email. Be cautious of content] > > > > > > > > > > > > On Fri, Jul 10, 2020 at 11:18 AM Ron Bonica <rbonica@juniper.net> > > wrote: > > > > > > > > > > Tom, > > > > > > > > > > I am forking a new thread since this is not directly related to > Shuping's > > draft. > > > > > > > > > > Any variable length extension header can be used in a DoS attack. > So, if > > a node encounters a packet that satisfies any of the following criteria, > it > > should discard the packet and send an ICMP message as described in > > > https://urldefense.com/v3/__https://tools.ietf.org/html/draft-herbert-6ma > > n-icmp-limits-03__;!!NEt6yMaO-gk!XnKPvkz9vBtVNlSCx0SqcojVpo2uBgeSDJ > > zZEJa2fLd1NTKb53H0w3Ue2Xxv7iGB$ . > > > > > > > > > > - The extension header chain is longer than the node can process > > > > > - An individual extension header is longer than the node can > > > > > process > > > > > - The total number of options contained by all instances of the > HBH and > > Destination Options header exceeds the number or options that the node > > can process. > > > > > > > > > > > > > Ron, > > > > > > > > Right, those are the ICMP errors for the allowance to drop or ignore > > extension headers in section 5.3 of RFC8504, there's also default limits > > suggested in that doc. Do you think this is sufficient in routers to get > past the > > DOS concern? > > > > > > > > Tom > > > > > > > > > > > > > > Ron > > > > > > > > > > > > > > > > > > > > Juniper Business Use Only > > > > > > > > > > -----Original Message----- > > > > > From: Tom Herbert <tom@herbertland.com> > > > > > Sent: Friday, July 10, 2020 1:13 PM > > > > > To: Ron Bonica <rbonica@juniper.net> > > > > > Cc: Pengshuping (Peng Shuping) <pengshuping@huawei.com>; > > > > > 6man@ietf.org > > > > > Subject: Re: New Version Notification for > > > > > draft-li-6man-hbh-fwd-hdr-00.txt > > > > > > > > > > [External Email. Be cautious of content] > > > > > > > > > > > > > > > On Fri, Jul 10, 2020 at 7:59 AM Ron Bonica > > <rbonica=40juniper.net@dmarc.ietf.org> wrote: > > > > > > > > > > > > Peng, > > > > > > > > > > > > While your solution may require refinement, I think that you have > > latched on to a problem that needs to be solved. HBH Options, as they > were > > originally conceived in RFC 1883, are very useful. > > > > > > > > > > > > When IPv6 was first implemented on high-speed routers (circa > 2000), > > HBH options were not yet well-understood and ASICs were not so capable as > > they are today. So, early IPv6 implementation dispatched all packet that > > contain HBH options to their slow path. In these implementations, a large > > flow of IPv6 packets could congest the slow path, causing other critical > > functions that are executed on the slow path to fail. These critical > functions > > include routing and network management. > > > > > > > > > > > > To mitigate this DoS vulnerability, many operators deployed > Access > > Control Lists (ACLs) that discard all packets containing HBH Options. > This > > introduced a circular problem: > > > > > > > > > > > > - An implementation problem caused HBH to become a DoS vector > > > > > > - Because HBH was a DoS vector, network operators deployed ACLs > > > > > > that discard packets containing HBH > > > > > > - Because network operators deployed ACLs that discard packets > > > > > > containing HBH, network designers stopped defining new HBH > > > > > > Options > > > > > > - Because network designers stopped defining new HBH Options, > > > > > > the community was not motivated to fix the implementation > > > > > > problem that cause HBH to become a DoS vector > > > > > > > > > > > > If we can fix the implementation problem that caused HBH to > > become a DoS vector, we can break this cycle and start using HBH Options. > > > > > > > > > > > Ron, > > > > > > > > > > I think there were "protocol problems" in the original design of > HBH. > > > > > The requirement that _all_ routers in the path process Hop-by-Hop > > options was in retrospect too austere, and the possibility that an > attacker > > could stuff a packet with hundreds of bogus options, only limited by MTU, > > was, again in retrospect, a pretty obvious DOS vector. > > > > > I believe these problems have been addressed in RFC8200 and > > RFC8504. > > > > > We certainly welcome the feedback from router vendors whether these > > mitigations are sufficient to make HBH options deployable. > > > > > > > > > > Tom > > > > > > > > > > > Let's continue to work on a solution. > > > > > > > > > > > > > > Ron > > > > > > > > > > > > > > > > > > > > > > > > Juniper Business Use Only > > > > > > > > > > > > -----Original Message----- > > > > > > From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Pengshuping > > > > > > (Peng > > > > > > Shuping) > > > > > > Sent: Thursday, July 2, 2020 12:07 PM > > > > > > To: 6man@ietf.org > > > > > > Subject: FW: New Version Notification for > > > > > > draft-li-6man-hbh-fwd-hdr-00.txt > > > > > > > > > > > > [External Email. Be cautious of content] > > > > > > > > > > > > > > > > > > Hi Folks, > > > > > > > > > > > > We have just uploaded a new draft aiming to analyze and tackle > the > > issues faced by the Hop-by-Hop Options Header, which has been sparsely > > used without any form of large scale deployment. > > > > > > > > > > > > However, as IPv6 is being rapidly and widely deployed worldwide, > > more and more new services that requires hop-by-hop forwarding process > > behavior are emerging, and also the already defined over ten HBH Options > > are going to be used widely in practice. > > > > > > > > > > > > We look forward to hearing your feedback and comments, and try to > > release the benefits that could be provided by HBH Options header > > altogether. > > > > > > > > > > > > Best regards, > > > > > > Shuping > > > > > > > > > > > > -----Original Message----- > > > > > > From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] > > > > > > Sent: Thursday, July 2, 2020 11:31 PM > > > > > > To: Lizhenbin <lizhenbin@huawei.com>; Pengshuping (Peng Shuping) > > > > > > <pengshuping@huawei.com> > > > > > > Subject: New Version Notification for > > > > > > draft-li-6man-hbh-fwd-hdr-00.txt > > > > > > > > > > > > > > > > > > A new version of I-D, draft-li-6man-hbh-fwd-hdr-00.txt has been > > successfully submitted by Shuping Peng and posted to the IETF repository. > > > > > > > > > > > > Name: draft-li-6man-hbh-fwd-hdr > > > > > > Revision: 00 > > > > > > Title: Hop-by-Hop Forwarding Options Header > > > > > > Document date: 2020-07-03 > > > > > > Group: Individual Submission > > > > > > Pages: 10 > > > > > > URL: > > > https://urldefense.com/v3/__https://www.ietf.org/internet-drafts/draft-li-6 > > man-hbh-fwd-hdr-00.txt__;!!NEt6yMaO-gk!QoInpMGHwaC7LsKAVISa9A00d > > bzuCmO7S4CG2fZYHGYeOXYwVmtNTFnzgB-bqLrg$ > > > > > > Status: > > > https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-li-6man- > > hbh-fwd-hdr/__;!!NEt6yMaO-gk!QoInpMGHwaC7LsKAVISa9A00dbzuCmO7S > > 4CG2fZYHGYeOXYwVmtNTFnzgM5iPE22$ > > > > > > Htmlized: > > > https://urldefense.com/v3/__https://tools.ietf.org/html/draft-li-6man-hbh-f > > wd-hdr-00__;!!NEt6yMaO-gk!QoInpMGHwaC7LsKAVISa9A00dbzuCmO7S4C > > G2fZYHGYeOXYwVmtNTFnzgPvsH43l$ > > > > > > Htmlized: > > > https://urldefense.com/v3/__https://datatracker.ietf.org/doc/html/draft-li- > > 6man-hbh-fwd-hdr__;!!NEt6yMaO-gk!QoInpMGHwaC7LsKAVISa9A00dbzuC > > mO7S4CG2fZYHGYeOXYwVmtNTFnzgBQxbwZb$ > > > > > > > > > > > > > > > > > > Abstract: > > > > > > RFC8200 specifies the HBH header that is assumed to be > > processed by > > > > > > each hop in the delivery path of the packet. However, RFC8200 > > also > > > > > > expects that nodes processing the HBH header have been > > explicitly > > > > > > configured to do so. Therefore, it cannot be assumed that a > > HBH > > > > > > header present in the packet is processed. It all depends on > the > > > > > > configuration of each node across the path. Moreover, in most > > of > > > > > > networks today, the processing of the HBH header is done in > the > > > > > > control plane (slow processing path) which incurs several > > limitations > > > > > > among which resources consumption and security risk. > > > > > > > > > > > > For these reasons, over time, the Hop-by-Hop Options header > > has been > > > > > > sparsely used without any form of large scale deployment. > Also, > > most > > > > > > of already defined HBH options are forwarding options which > > contain > > > > > > forwarding plane information that needs not to be sent to the > > control > > > > > > plane. > > > > > > > > > > > > This document proposes a new Hop-by-Hop Forwarding Options > > Header in > > > > > > order to carry Hop-by-Hop options that are solely intended to > > and > > > > > > processed by the forwarding plane. This new HBH header is > > confined > > > > > > in and dedicated to the forwarding plane while the current HBH > > header > > > > > > can still be used for control plane options. > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > Please note that it may take a couple of minutes from the time of > > submission until the htmlized version and diff are available at > tools.ietf.org. > > > > > > > > > > > > The IETF Secretariat > > > > > > > > > > > > > > > > > > ---------------------------------------------------------------- > > > > > > ---- IETF IPv6 working group mailing list ipv6@ietf.org > > > > > > Administrative > > > > > > Requests: > > > > > > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinf > > > > > > o/ip > > > > > > v6 > > > > > > > > __;!!NEt6yMaO-gk!QoInpMGHwaC7LsKAVISa9A00dbzuCmO7S4CG2fZYHGYe > > OXY > > > > > > wVmt > > > > > > NT > > > > > > FnzgEBbFhyl$ > > > > > > ---------------------------------------------------------------- > > > > > > ---- > > > > > > > > > > > > ---------------------------------------------------------------- > > > > > > ---- IETF IPv6 working group mailing list ipv6@ietf.org > > > > > > Administrative > > > > > > Requests: > > > > > > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinf > > > > > > o/ip > > > > > > v6 > > > > > > > > __;!!NEt6yMaO-gk!Qu9y9Ou2SvlYIZjMQa3hBXcu08HG3W4BBIcFoOHCfp41H > > tk > > > > > > dIYu > > > > > > Ds > > > > > > XM8uyxPWt9N$ > > > > > > ---------------------------------------------------------------- > > > > > > ---- > > > > -------------------------------------------------------------------- > > > > IETF IPv6 working group mailing list ipv6@ietf.org Administrative > > > > Requests: https://www.ietf.org/mailman/listinfo/ipv6 > > > > -------------------------------------------------------------------- > > > > > > -- > > > --- > > > tte@cs.fau.de > > > > -------------------------------------------------------------------- > > IETF IPv6 working group mailing list > > ipv6@ietf.org > > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > > -------------------------------------------------------------------- > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > ipv6@ietf.org > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > -------------------------------------------------------------------- > -- <http://www.verizon.com/> *Gyan Mishra* *Network Solutions A**rchitect * *M 301 502-134713101 Columbia Pike *Silver Spring, MD
- Death by extension header (was:RE: New Version No… Ron Bonica
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- RE: Death by extension header (was:RE: New Versio… Ron Bonica
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header (was:RE: New Versio… Warren Kumari
- RE: Death by extension header (was:RE: New Versio… Ron Bonica
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Fernando Gont
- Re: Death by extension header (was:RE: New Versio… Fernando Gont
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header (was:RE: New Versio… Fernando Gont
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header Fernando Gont
- Re: Death by extension header (was:RE: New Versio… Fernando Gont
- Re: Death by extension header Tom Herbert
- RE: Death by extension header (was:RE: New Versio… Ron Bonica
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- RE: Death by extension header (was:RE: New Versio… Pengshuping (Peng Shuping)
- Re: Death by extension header (was:RE: New Versio… Gyan Mishra
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- RE: Death by extension header (was:RE: New Versio… Jakob Heitz (jheitz)
- Re: Death by extension header (was:RE: New Versio… Tom Herbert
- Re: Death by extension header Joel M. Halpern
- Re: Death by extension header (was:RE: New Versio… Robert Raszuk
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Gyan Mishra
- Re: Death by extension header (was:RE: New Versio… Jeff Tantsura
- Re: Death by extension header Brian E Carpenter
- Re: Death by extension header (was:RE: New Versio… Gyan Mishra
- Re: Death by extension header Toerless Eckert
- Re: Death by extension header (was:RE: New Versio… Philip Homburg
- Re: Death by extension header Nick Hilliard
- Re: Death by extension header (was:RE: New Versio… Robert Raszuk
- Re: Death by extension header Toerless Eckert
- Re: Death by extension header Toerless Eckert