Re: [netconf] AD review of draft-ietf-netconf-tls-client-server-33
Kent Watsen <kent+ietf@watsen.net> Sat, 27 January 2024 12:39 UTC
Return-Path: <0100018d4aee9b1c-7862ebe9-19ef-48c8-9751-9bc67dbf5ed3-000000@amazonses.watsen.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8FA9AC15199B; Sat, 27 Jan 2024 04:39:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.013
X-Spam-Level:
X-Spam-Status: No, score=-1.013 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, MIME_HTML_ONLY_MULTI=0.001, MIME_QP_LONG_LINE=0.001, MPART_ALT_DIFF=0.79, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazonses.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jl3UeDsnL3Mz; Sat, 27 Jan 2024 04:39:29 -0800 (PST)
Received: from a48-110.smtp-out.amazonses.com (a48-110.smtp-out.amazonses.com [54.240.48.110]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0F46DC151990; Sat, 27 Jan 2024 04:39:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=224i4yxa5dv7c2xz3womw6peuasteono; d=amazonses.com; t=1706359167; h=Content-Type:Content-Transfer-Encoding:From:Mime-Version:Subject:Date:Message-Id:References:Cc:In-Reply-To:To:Feedback-ID; bh=HiTgYlmIrGpeUQQ25lJHaWu6I/qXWduoFw3h9Py452E=; b=UMGTfW5ihrNBXzCC/WGAo+ClMxpo6o4bvGxl80zYGrPvT8GLI/4DzeQ0OeSwIVGv TjwTX6Ah0zrGHfXWJA9ZEwXKAmznrM0f+YJmqB/2R8xTFbmABD8uZxupdp9Eu/Bk1P+ Ff29PJNLZB8Ow0QKUXcb82DBbh1Gdm+QtADmbeZs=
Content-Type: multipart/alternative; boundary="Apple-Mail-3431E54A-DD3E-45C9-A488-76BAF8172274"
Content-Transfer-Encoding: 7bit
From: Kent Watsen <kent+ietf@watsen.net>
Mime-Version: 1.0 (1.0)
Date: Sat, 27 Jan 2024 12:39:27 +0000
Message-ID: <0100018d4aee9b1c-7862ebe9-19ef-48c8-9751-9bc67dbf5ed3-000000@email.amazonses.com>
References: <0038F3C8-10CE-48F7-9901-2F2F3C4B10BB@watsen.net>
Cc: "Rob Wilton (rwilton)" <rwilton=40cisco.com@dmarc.ietf.org>, draft-ietf-netconf-tls-client-server.all@ietf.org, netconf@ietf.org, Jeff Hartley <intensifysecurity@gmail.com>
In-Reply-To: <0038F3C8-10CE-48F7-9901-2F2F3C4B10BB@watsen.net>
To: "Rob Wilton (rwilton)" <rwilton@cisco.com>
X-Mailer: iPhone Mail (21C66)
Feedback-ID: 1.us-east-1.DKmIRZFhhsBhtmFMNikgwZUWVrODEw9qVcPhqJEI2DA=:AmazonSES
X-SES-Outgoing: 2024.01.27-54.240.48.110
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/a_EpnjEnFJo0mlHLID3_mQxQc6g>
Subject: Re: [netconf] AD review of draft-ietf-netconf-tls-client-server-33
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 27 Jan 2024 12:39:30 -0000
Hi Rob,Thanks for your review.More responses below.KentOn Jan 26, 2024, at 9:53 AM, Rob Wilton (rwilton) <rwilton@cisco.com> wrote:Hi Kent,Please see inline …I think that there are just some small changes (perhaps mainly deleting support for TLS1.0/TLS1.1) and then we should be good to go.TLS 1.0 and 1.1 removed, per above.This is inconsistent with the preference stated in the SSH review.In any case, I updated the Note to Editor to remove Section A (YANG Modules for IANA) entirely.However, in doing so, it will break the Introduction and Security Considerations sections, as the ref these sections…Ack.Ack.AckGood point, but I’m getting tired to tweak the text in 9 documents now...I will tell Editor to just make more readable later, when they come to bug me about them...
- [netconf] AD review of draft-ietf-netconf-tls-cli… Rob Wilton (rwilton)
- Re: [netconf] AD review of draft-ietf-netconf-tls… Kent Watsen
- Re: [netconf] AD review of draft-ietf-netconf-tls… Rob Wilton (rwilton)
- Re: [netconf] AD review of draft-ietf-netconf-tls… Kent Watsen
- Re: [netconf] AD review of draft-ietf-netconf-tls… Rob Wilton (rwilton)
- Re: [netconf] AD review of draft-ietf-netconf-tls… Kent Watsen
- Re: [netconf] AD review of draft-ietf-netconf-tls… Rob Wilton (rwilton)
- Re: [netconf] AD review of draft-ietf-netconf-tls… Rob Wilton (rwilton)
- Re: [netconf] AD review of draft-ietf-netconf-tls… Kent Watsen