[Lsr] Roman Danyliw's Discuss on draft-ietf-lsr-ospfv3-extended-lsa-yang-28: (with DISCUSS and COMMENT)
Roman Danyliw via Datatracker <noreply@ietf.org> Thu, 01 February 2024 00:56 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: lsr@ietf.org
Delivered-To: lsr@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 37DA9C14F68D; Wed, 31 Jan 2024 16:56:05 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-lsr-ospfv3-extended-lsa-yang@ietf.org, lsr-chairs@ietf.org, lsr@ietf.org, Christian Hopps <chopps@chopps.org>, chopps@chopps.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.4.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <170674896520.10154.16061739265470573273@ietfa.amsl.com>
Date: Wed, 31 Jan 2024 16:56:05 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/-qsm-3npvV3xOtcikTIm6wVJ1Ck>
Subject: [Lsr] Roman Danyliw's Discuss on draft-ietf-lsr-ospfv3-extended-lsa-yang-28: (with DISCUSS and COMMENT)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Feb 2024 00:56:05 -0000
Roman Danyliw has entered the following ballot position for draft-ietf-lsr-ospfv3-extended-lsa-yang-28: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-lsr-ospfv3-extended-lsa-yang/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- ** Section 5. Write operations (e.g., edit-config) to these data nodes without proper protection can have a negative effect on network operations. There are the subtrees and data nodes and their sensitivity/vulnerability: /ospf:ospf/extended-lsa-support /ospf:ospf/ospf:areas/ospf:area/extended-lsa-support The ability to disable OSPFv3 Extended LSA support can result in a denial of service. Isn’t it more than just denial of service? In certain environments wouldn’t the ability to modify OSPF Extended LSA configurations enable an attacker to: modify network topologies to enable select traffic to avoid inspection or treatment by security controls; route traffic in a way that it would be subject to inspect/modification by an adversary node; or gain access to otherwise segregated parts of the network. ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- As an editorial note, I would have benefit from some narrative prose on the data model.
- [Lsr] Roman Danyliw's Discuss on draft-ietf-lsr-o… Roman Danyliw via Datatracker
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… John Scudder
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Yingzhen Qu
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem
- Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-l… Acee Lindem