Re: [netconf] Latest ietf-netconf-server draft and related modules

Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Thu, 29 April 2021 15:14 UTC

Return-Path: <J.Schoenwaelder@jacobs-university.de>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 876FC3A289D for <netconf@ietfa.amsl.com>; Thu, 29 Apr 2021 08:14:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jacobsuniversity.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wsSrWxAN_Ofd for <netconf@ietfa.amsl.com>; Thu, 29 Apr 2021 08:14:07 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2054.outbound.protection.outlook.com [40.107.21.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A4DE3A2892 for <netconf@ietf.org>; Thu, 29 Apr 2021 08:14:07 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CmNn+3aRZciHrVAzo5ofcHTacJbD/+c5fUCDcD/Lu1+OKgkX69WhwOv93hpb7Y4dnA+YHcxMlRadsv4Lnt7HALMHz0cN6BjWGNeAhkTIiBv6FRp5n1iI1ERuG4UkQOXeZnhhLYyaj3TPPcbnM0sTpuw0nFojlITlzeSuH8uC3qxK0bNuF5TofNiGhYUNZ+WxiS+R7P31tivH2svh24Omxd1lJPtf8aKFAjkbdpWwrSBXZ/TSORfjEmmonrtP/uScjrvUETioaDSqzxMzS3otwhiTWtPYAjUne/e91zdl91+xifJWWoTvkKe3t9LkeRK/xu99xQX6RXPNQC0r8xwX3w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NBxkcp7YXrJevToN3z8ht8ZrVaZCC6adZW59oGcR5Ok=; b=ft+4kBnBj2NCSr6rQeF0/E7Rlh1Dn3Xp7tRpiRzpLdcjygjaMF2BNAA4OmxfCYuFwnoqWIyUWnmMiGOMfi1oQhv1qP1UCoQuJjX1swIGbCE0wzJv9QOCUmdMQUT5+eG9Sn8lkq0uCAFICt37gK1Yj/p/CQ+VrUKgcORCnRkNKAS+W661TPSjRhmK8pnlAm/K42X57aOBZ0uZ6YCtCe5mwF+7oI+oTv3fe/37UQC1ir4Hvbcs8Dj4Fcu0DGK+SXo5w1g+wNgfBhj0fcFS4lTwkdmIDCvzLGyMKAiObIhqR1ZN08gUSQdpA+iQqBzZDsTewl1T+i/8KCI14CX8LQt9aQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jacobs-university.de; dmarc=pass action=none header.from=jacobs-university.de; dkim=pass header.d=jacobs-university.de; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jacobsuniversity.onmicrosoft.com; s=selector2-jacobsuniversity-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NBxkcp7YXrJevToN3z8ht8ZrVaZCC6adZW59oGcR5Ok=; b=W/Vme83/Co3KS22Dj9vSPFqTvccFeZ5yztu9x+Zqn/R+NUA1rIqj30McGSdBwZXTx3TAP4f+oLUWR9FdlUVG928xkXxynNtD13+oxK24qCJhjc7j24yTiK9wh32757fJ7dXDfR3SgSzl0chY99+Trq16dNCoBqrW5JB457Lczos=
Authentication-Results: cesnet.cz; dkim=none (message not signed) header.d=none;cesnet.cz; dmarc=none action=none header.from=jacobs-university.de;
Received: from AM0P190MB0641.EURP190.PROD.OUTLOOK.COM (2603:10a6:208:194::23) by AM0P190MB0675.EURP190.PROD.OUTLOOK.COM (2603:10a6:208:19f::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4065.23; Thu, 29 Apr 2021 15:14:04 +0000
Received: from AM0P190MB0641.EURP190.PROD.OUTLOOK.COM ([fe80::fd93:9b33:ac92:ea58]) by AM0P190MB0641.EURP190.PROD.OUTLOOK.COM ([fe80::fd93:9b33:ac92:ea58%8]) with mapi id 15.20.4087.026; Thu, 29 Apr 2021 15:14:04 +0000
Date: Thu, 29 Apr 2021 17:14:04 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: Michal =?utf-8?B?VmHFoWtv?= <mvasko@cesnet.cz>, Kent Watsen <kent+ietf@watsen.net>, "netconf@ietf.org" <netconf@ietf.org>
Message-ID: <20210429151404.uwmfdlhzwsroaxe7@anna.jacobs.jacobs-university.de>
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
Mail-Followup-To: Michal =?utf-8?B?VmHFoWtv?= <mvasko@cesnet.cz>, Kent Watsen <kent+ietf@watsen.net>, "netconf@ietf.org" <netconf@ietf.org>
References: <010001791de3029b-730530a6-f4fb-4d57-9d39-a1551ab76260-000000@email.amazonses.com> <62ed-608ac900-53-32820540@104833101> <20210429150928.3rwjhc3llseofssa@anna.jacobs.jacobs-university.de>
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20210429150928.3rwjhc3llseofssa@anna.jacobs.jacobs-university.de>
X-Originating-IP: [212.201.44.244]
X-ClientProxiedBy: AM3PR04CA0132.eurprd04.prod.outlook.com (2603:10a6:207::16) To AM0P190MB0641.EURP190.PROD.OUTLOOK.COM (2603:10a6:208:194::23)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from localhost (212.201.44.244) by AM3PR04CA0132.eurprd04.prod.outlook.com (2603:10a6:207::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4087.29 via Frontend Transport; Thu, 29 Apr 2021 15:14:04 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 61d47587-0e4c-4409-2e94-08d90b216d55
X-MS-TrafficTypeDiagnostic: AM0P190MB0675:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: <AM0P190MB0675A25CB653A09513A74740DE5F9@AM0P190MB0675.EURP190.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:8273;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0P190MB0641.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(376002)(346002)(366004)(396003)(39840400004)(136003)(83380400001)(186003)(956004)(4744005)(1076003)(5660300002)(110136005)(16526019)(26005)(86362001)(3450700001)(8936002)(6486002)(8676002)(52116002)(66946007)(66476007)(6496006)(786003)(316002)(2906002)(38350700002)(38100700002)(478600001)(66556008); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData: =?us-ascii?Q?IyZFRHd7CiEKxt6c+6BLeXE1LulyW0HemN+RXnar6pp9V8MQ+QjsNUlnfHW5?= =?us-ascii?Q?k4jJm50V40CWQWNQW3UdcU791CV2kpD4YogWL5XR78XJ21mvUSHLhRnkxCm4?= =?us-ascii?Q?q97pjaW6JVeeR2P31IOzqOYAcdntVq1B2SyntT70S6UNj1ugqe1tOTWx6nZe?= =?us-ascii?Q?Y2ZzlBQKcJrvfAOgtIrs+NpWo0QsfO5vntYyDz9VxhUsDZ09b9NvJCtNxMrj?= =?us-ascii?Q?ZBB3Bq5Z7Myj7YzL0Q90JxdUib9NvXhYnbe2dxn3M7zKnyQRuWfTjYUUL4K3?= =?us-ascii?Q?1uxb8OwxX4K9NsIQ23U8OV5ZRp/NSv2psFH7wPxpq86Gr8ZngjiHpfN1/wyW?= =?us-ascii?Q?HYNfsvtAbgKH6E6yxfQ+gdClqKnCATCjWgJbkp9wqKM6Kd085Acwf4hChKVS?= =?us-ascii?Q?rtq+Wu54J9oFFmEFPnYevFBTBHmoaKsCZK0DdvL5IxdgnYMmL4Ejc0K6ZhHv?= =?us-ascii?Q?3fupEOi5M5EZCLzofjbpCEm03DX59jIFeG/2bOika3kI9GFrZ2EIn+1rPmGg?= =?us-ascii?Q?s+di2SNmTHdEd7V2q2kppeats/2h3QW3UsRz5zQLdCDLkjcWHq+7ucehZGmf?= =?us-ascii?Q?0tN60/U3zH0zBFtPazrZtfKwN/FR+7gabZ9UwHHY4yimTnf178RL/eW5lvJn?= =?us-ascii?Q?DZi//iAgRsjXXOxHJgbhlMJEvs84OKASQVTbjlQOGqeSixWsihR473dv1cTY?= =?us-ascii?Q?x5Kzbdgl4fedEnmJ10JxEP4ho/tGJLGM2ZQ8h9yLwJG/XH6QOQ3j+Q3cRtMz?= =?us-ascii?Q?f76i7eG5KOFzW/ZTYGSh2QhQ9WwKHi7YnONRRJalZ5oZNlbESXM5mhEOb/Y7?= =?us-ascii?Q?r6gNF0k643iRB99a9jn2QW80ZOdC2CHYdWy2pbo7XsnFi4K6uWHHIICxG8I7?= =?us-ascii?Q?oGV25NZSPxGNBIg1vU9nWFWgcs3E/FnYq7OijObJkedRbfiIREGLoJBoN3eH?= =?us-ascii?Q?Zd5d/Z29xycSldP8BG6ikVwU0ORdZOtDJfvW3QY6Ct3XbpsSlHkapeVLUer/?= =?us-ascii?Q?cjp+gLAMkLVITvL+Xkt7/8WnDA5XtY7t9+iML3PmlfMLLRCop8Vkl6DvPhnI?= =?us-ascii?Q?p38SjO9RiYekA7TqDRWGXaC1xwqtE3yixt856RVk2xX5dOsAvc4f52RleYNY?= =?us-ascii?Q?nq/w3sqP8LaWxcryEdYvh2p1Ld5SMaJHPjXEG/lNM9nzid8o8ZBqCOvliFX6?= =?us-ascii?Q?0n7SAdicHVMwOkREpBW1h99z+DWcMTjRIOHrlobK/9DCMA9emhFGWx4T8Sq8?= =?us-ascii?Q?f40Fh8LOqVG+Xw08wAL5dtkbZHmdLVkP90ptIxjIfWpZp2tnEUq/tQqJ+Us5?= =?us-ascii?Q?H+A2pMQBjtsgeaIZFZ3QkanL?=
X-OriginatorOrg: jacobs-university.de
X-MS-Exchange-CrossTenant-Network-Message-Id: 61d47587-0e4c-4409-2e94-08d90b216d55
X-MS-Exchange-CrossTenant-AuthSource: AM0P190MB0641.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 29 Apr 2021 15:14:04.6567 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: f78e973e-5c0b-4ab8-bbd7-9887c95a8ebd
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: eZP6QYAhDtvpuReWMhvYAGINR4S+wXs/HD8yX76bHe0YVkMT2uXSX8b+B7CwKYxpB/gHmsbKJejtZ5vh7PoipoxEoz+r0AJFf7FP1DUHnLU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0P190MB0675
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/WBaYVEcI1RMmxqiNiluWHUN8p7g>
Subject: Re: [netconf] Latest ietf-netconf-server draft and related modules
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Apr 2021 15:14:14 -0000

On Thu, Apr 29, 2021 at 05:09:28PM +0200, Juergen Schoenwaelder wrote:
> And ssh_config(5) says:
> 
>    Specifies the order in which the client should try authentication
>    methods.  This allows a client to prefer one method (e.g.
>    keyboard-interactive) over another method (e.g. password).  The
>    default is:
> 
>              gssapi-with-mic,hostbased,publickey,
>              keyboard-interactive,password
> 
> I have no idea how popular it is to change the default order, which is
> likely what most people expect.

Let me add that an implementation that does password before publickey
would be somewhat annoying. In other words, I have no opinion whether
this order needs to be made configurable but perhaps it is meaningful
to spell out a default order that implementors should consider.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>