IETF Logo Mail Archive

NETCONF over TLS?

Andy Bierman <ietf@andybierman.com> Thu, 30 March 2006 16:59 UTC

Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FP0UO-0001In-41 for netconf-archive@lists.ietf.org; Thu, 30 Mar 2006 11:59:16 -0500
Received: from psg.com ([147.28.0.62]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FP0UM-0005wU-RK for netconf-archive@lists.ietf.org; Thu, 30 Mar 2006 11:59:16 -0500
Received: from majordom by psg.com with local (Exim 4.60 (FreeBSD)) (envelope-from <owner-netconf@ops.ietf.org>) id 1FP0RM-0009RX-QX for netconf-data@psg.com; Thu, 30 Mar 2006 16:56:08 +0000
X-Spam-Checker-Version: SpamAssassin 3.1.1 (2006-03-10) on psg.com
X-Spam-Level:
X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00, FORGED_RCVD_HELO autolearn=ham version=3.1.1
Received: from [205.178.146.50] (helo=omr1.networksolutionsemail.com) by psg.com with esmtp (Exim 4.60 (FreeBSD)) (envelope-from <ietf@andybierman.com>) id 1FP0RL-0009RG-Lq for netconf@ops.ietf.org; Thu, 30 Mar 2006 16:56:07 +0000
Received: from mail.networksolutionsemail.com (omr1.mgt.bos.netsol.com [10.49.2.111] (may be forged)) by omr1.networksolutionsemail.com (8.12.10/8.12.10) with SMTP id k2UGu6Zj029924 for <netconf@ops.ietf.org>; Thu, 30 Mar 2006 11:56:06 -0500
Received: (qmail 19056 invoked by uid 78); 30 Mar 2006 16:56:05 -0000
Received: from unknown (HELO ?192.168.0.12?) (andy@andybierman.com@24.24.133.237) by 10.49.34.111 with SMTP; 30 Mar 2006 16:56:05 -0000
Message-ID: <442C0D9E.3070401@andybierman.com>
Date: Thu, 30 Mar 2006 08:55:58 -0800
From: Andy Bierman <ietf@andybierman.com>
User-Agent: Thunderbird 1.5 (Windows/20051201)
MIME-Version: 1.0
To: "Netconf (E-mail)" <netconf@ops.ietf.org>
Subject: NETCONF over TLS?
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Sender: owner-netconf@ops.ietf.org
Precedence: bulk
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 7655788c23eb79e336f5f8ba8bce7906

Hi,

Somebody sent me an email and asked if the WG was
interested in NETCONF over TLS.  I said probably
not.  This morning I saw this I-D in Last Call
to supply a user name to TLS, an obvious missing
component is you want to support a user-based
access-control model (and I do).

http://www.ietf.org/internet-drafts/draft-santesson-tls-ume-04.txt

So now I am curious (but not enough to standardize
anything) if the secure syslog integration with netconf
over TLS makes security and operational sense.


Andy


--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

v2.23.0 | Report a Bug | By Email