Re: [netconf] I-D Action: draft-ietf-netconf-ssh-client-server-32.txt
tom petch <ietfc@btconnect.com> Thu, 23 February 2023 11:50 UTC
Return-Path: <ietfc@btconnect.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35CD9C152564 for <netconf@ietfa.amsl.com>; Thu, 23 Feb 2023 03:50:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R6xT9Gnab3LY for <netconf@ietfa.amsl.com>; Thu, 23 Feb 2023 03:50:14 -0800 (PST)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on0706.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0d::706]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18F7CC1524BC for <netconf@ietf.org>; Thu, 23 Feb 2023 03:50:13 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QNGdvwlS2fprUFLAIe/7nqhYTE9V9nmkoaK+0lAUvejUQiJDwXgPRBIgD4ak0tQkL1x37KTX4XjYRZFOreZgWoxUNZCoE+R334oruCZ+h1Bi+mv+/yhnP6rdd7FJDVGa0K51U3l82MzUv0EGrycBlY8GL+I3qg2cDIJeTz7hACPWYjrkRlhMwlgYv3Vb20XX7m8zfaRi2YAxy+4c2cLr7MDMDFbIZJc9tiGw9GxXX2DUyKLTK2sHKQBNzZHXCsPM6g31FDAC9tuuDi/zbdMhg0oyhQuLhBkKyDeddQsXlqThJuJWVTc5bHkf1cHO3ENMEcQTQvQm+IL+T+2lizmtlg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=9vz+EbV+br1IwdCYOMfJEOZ7CTexRy4c2hnrxmew1iA=; b=HgSeT2jbLzxdogB8/e+RRyzqzYfAXLcPumBhf8m65aPKLH4KfILnzH8t50qxBGArgxhL2p+1oeaJM3qsEP+4vMlJF0UBML40guxLx3xIe3ei2UnMpNhEvZn6ykaQTlB+cFoYR0g1E8PiSkNZ7W/4DR1FxX3u8dq/8oBw6unYtcSOhtA6aX+HiSMUKpWavTnHWXngwMIt228wXwSsMy7ZmpVuxnF2HaVWfoGsFSqpM1inTGPfoCus0r6k4NDbxYqsS0nBdF2txt5MAQC+9Icmif5KoGMiS/5XKoMEdoGEZCZJVxYx+w/Z/ZGgGIXWKd129bZFMd3mq2NJvT355+5Dpg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=9vz+EbV+br1IwdCYOMfJEOZ7CTexRy4c2hnrxmew1iA=; b=Gy4YCGjw9iOBju3R0Sc7feL864qERDL/Pcqqs7LaNx8kEu99s0PPP67hwF9n1gq2pjHyyrUKFvLQjerc/nCsFUTUZ3rB1N8VkZtjxcK14Do1RdrJzJu6VaNzv+dR2LxrNauzqj4Hfrw+GEyb1pP5kfGAZvzzc6TO5IQqpGQBaOw=
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com (2603:10a6:20b:134::11) by AS8PR07MB7077.eurprd07.prod.outlook.com (2603:10a6:20b:259::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6134.21; Thu, 23 Feb 2023 11:50:06 +0000
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::d0fd:8461:b6d3:748a]) by AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::d0fd:8461:b6d3:748a%9]) with mapi id 15.20.6134.018; Thu, 23 Feb 2023 11:50:06 +0000
From: tom petch <ietfc@btconnect.com>
To: Kent Watsen <kent+ietf@watsen.net>
CC: "netconf@ietf.org" <netconf@ietf.org>
Thread-Topic: [netconf] I-D Action: draft-ietf-netconf-ssh-client-server-32.txt
Thread-Index: AQHZDlri+kn5nK5A4E2s2G36DbCIiq6w68N9gAQJKQCAJ+UC+w==
Date: Thu, 23 Feb 2023 11:50:06 +0000
Message-ID: <AM7PR07MB6248DC0F8566D2E9380BFAB3A0AB9@AM7PR07MB6248.eurprd07.prod.outlook.com>
References: <167087103979.46389.9694896058931958199@ietfa.amsl.com> <AM7PR07MB6248269B4B3256F077EBB55AA0CF9@AM7PR07MB6248.eurprd07.prod.outlook.com> <01000185fb57248c-5512a462-16ef-4853-8cc3-9756120a0b86-000000@email.amazonses.com>
In-Reply-To: <01000185fb57248c-5512a462-16ef-4853-8cc3-9756120a0b86-000000@email.amazonses.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=btconnect.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM7PR07MB6248:EE_|AS8PR07MB7077:EE_
x-ms-office365-filtering-correlation-id: 15e4191f-4569-481e-7bd5-08db15941b8a
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR07MB6248.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(346002)(39860400002)(396003)(136003)(376002)(366004)(451199018)(91956017)(82960400001)(66574015)(38070700005)(122000001)(38100700002)(83380400001)(33656002)(7696005)(2906002)(55016003)(316002)(186003)(9686003)(53546011)(6506007)(26005)(478600001)(86362001)(41300700001)(71200400001)(8936002)(52536014)(5660300002)(4001150100001)(4326008)(66556008)(8676002)(66476007)(64756008)(66446008)(66946007)(76116006); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR07MB6248.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 15e4191f-4569-481e-7bd5-08db15941b8a
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Feb 2023 11:50:06.4148 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bagNzkjnstwEyAY8W5Kk6c5SNbTwXqdxLZC/U4Y0OaahkJ1iugaUEKc5opotreqrUaASsW7raxuue3UmgD6R/g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB7077
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/Zi-gXGdCCKCQc6XqUCt4yDi0mIw>
Subject: Re: [netconf] I-D Action: draft-ietf-netconf-ssh-client-server-32.txt
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Feb 2023 11:50:15 -0000
From: Kent Watsen <kent+ietf@watsen.net> Sent: 29 January 2023 02:24 <inline under <tp> > Hi Tom, Thank you for your review of the ssh-client-server draft. Please see below for my responses to your comments. Kent > On Jan 26, 2023, at 8:06 AM, tom petch <ietfc@btconnect.com> wrote: > > Some editorial glitches in the three SSH modules > > FIPS 186 2 needs adding to the I-D References Informative ref added for FIPS 186-6 (-2 expired some time ago) > RFC7317 is the reference for an import so needs to be Normative Fixed. > s.1.1 Hyperlinks are provided > Well no, it depends on the format - URL yes, hyperlinks no Changed: s/Hyperlinks to/URLs for/ (affects all drafts) > "Acceptable encryption algorithms in order of descending > preference. > suggest decreasing not descending Changed (four instances) > s.4.3 "This module defines reusable groupings for SSH servers > I only see one grouping Fixed (in ietf-ssh-client also) > Note that this grouping uses fairly typical descendant > node names such that a stack of 'uses' statements will > suggest nest rather than stack. I used "nesting" - okay? <tp> Yes fine </tp> > list host-key { > RFC4251 might be a better reference for host keys I don't understand this comment. <tp> This is a list of host key and that is part of the SSH architecture defined in 4251. The KEXINIT message is defined in 4253 but that for me is not as relevant as the explanation of what a host key and how it is crucial to SSH </tp> > "The 'user name' for the SSH client, as defined in > the SSH_MSG_USERAUTH_REQUEST message in RFC 4253."; > RFC4252 not RFC4253 What? I got it right... <tp> Again this is about authentication and that is explained in RFC4252. The message is listed in 4253 but I see that as less relevant than the issue of authentication which is covered in RFC4252 Tom Petch </tp> > container hostbased { > .... > "RFC 4253: The Secure Shell (SSH) Transport Layer > RFC4252 or RFC4251 not 4253 Now RFC4252 Kent > > Tom Petch > > > > ________________________________________ > From: netconf <netconf-bounces@ietf.org> on behalf of internet-drafts@ietf.org <internet-drafts@ietf.org> > Sent: 12 December 2022 18:50 > To: i-d-announce@ietf.org > Cc: netconf@ietf.org > Subject: [netconf] I-D Action: draft-ietf-netconf-ssh-client-server-32.txt > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Network Configuration WG of the IETF. > > Title : YANG Groupings for SSH Clients and SSH Servers > Author : Kent Watsen > Filename : draft-ietf-netconf-ssh-client-server-32.txt > Pages : 143 > Date : 2022-12-12 > > Abstract: > This document defines three YANG 1.1 modules: the first defines > features and groupings common to both SSH clients and SSH servers, > the second defines a grouping for a generic SSH client, and the third > defines a grouping for a generic SSH server.
- [netconf] I-D Action: draft-ietf-netconf-ssh-clie… internet-drafts
- Re: [netconf] I-D Action: draft-ietf-netconf-ssh-… tom petch
- Re: [netconf] I-D Action: draft-ietf-netconf-ssh-… tom petch
- Re: [netconf] I-D Action: draft-ietf-netconf-ssh-… Kent Watsen
- Re: [netconf] I-D Action: draft-ietf-netconf-ssh-… tom petch
- Re: [netconf] I-D Action: draft-ietf-netconf-ssh-… Kent Watsen