Re: [netmod] Adoption of: draft-bjorklund-netmod-snmp-cfg-02 (respondby 20120420)
"Randy Presuhn" <randy_presuhn@mindspring.com> Mon, 16 April 2012 17:32 UTC
Return-Path: <randy_presuhn@mindspring.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 619E511E809D for <netmod@ietfa.amsl.com>; Mon, 16 Apr 2012 10:32:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -99.999
X-Spam-Level:
X-Spam-Status: No, score=-99.999 tagged_above=-999 required=5 tests=[BAYES_50=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id umMXyAOtOvWh for <netmod@ietfa.amsl.com>; Mon, 16 Apr 2012 10:32:49 -0700 (PDT)
Received: from elasmtp-spurfowl.atl.sa.earthlink.net (elasmtp-spurfowl.atl.sa.earthlink.net [209.86.89.66]) by ietfa.amsl.com (Postfix) with ESMTP id D432411E809C for <netmod@ietf.org>; Mon, 16 Apr 2012 10:32:49 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=iwWesPD5iiCC5iIq4hnveesaJBZr8d9ReIddM8O+WoiS/9OwKd8kQNeWrAWq+0gs; h=Received:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:x-mimeole:X-ELNK-Trace:X-Originating-IP;
Received: from [99.187.237.246] (helo=oemcomputer) by elasmtp-spurfowl.atl.sa.earthlink.net with esmtpa (Exim 4.67) (envelope-from <randy_presuhn@mindspring.com>) id 1SJpnE-0004aS-1m for netmod@ietf.org; Mon, 16 Apr 2012 13:32:49 -0400
Message-ID: <002f01cd1bf7$18f9ab60$6b01a8c0@oemcomputer>
From: Randy Presuhn <randy_presuhn@mindspring.com>
To: netmod@ietf.org
References: <20120416084607.GB9989@nsn.com>
Date: Mon, 16 Apr 2012 10:33:54 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1478
x-mimeole: Produced By Microsoft MimeOLE V6.00.2800.1478
X-ELNK-Trace: 4488c18417c9426da92b9037bc8bcf44d4c20f6b8d69d8882951211ce6890f888dfd4aaa3a2a84d6c5e99976aba10b83350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 99.187.237.246
Subject: Re: [netmod] Adoption of: draft-bjorklund-netmod-snmp-cfg-02 (respondby 20120420)
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/netmod>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Apr 2012 17:32:53 -0000
Hi - While I suppose it's inevitable that this work will happen, I am nonetheless horrified by the way the I-D proposes that keys (and worse still, "passwords") be handled. This approach completely undermines the design of USM for preventing the compromise of one managed device causing the keys for another device to be revealed. The configuration management of keying material needs to be carefully separated from the rest, and needs to be done in a way that does not undercut the security of *all* managed devices in an administrative domain. Randy ----- Original Message ----- > From: "David Kessens" <david.kessens@nsn.com> > To: <netmod@ietf.org> > Sent: Monday, April 16, 2012 1:46 AM > Subject: [netmod] Adoption of: draft-bjorklund-netmod-snmp-cfg-02 (respondby 20120420) > > > Hi, > > During the netmod session at last IETF, there was no opposition to adopt: > > http://tools.ietf.org/id/draft-bjorklund-netmod-snmp-cfg-02.txt > > as a working group document. > > I would hereby like to give the working group a final chance to object > against this proposal. > > Please respond to the mailing list by 20120420 if you don't agree that we > adopt this document as a working group document. > > Thanks, > > David Kessens > --- > _______________________________________________ > netmod mailing list > netmod@ietf.org > https://www.ietf.org/mailman/listinfo/netmod
- [netmod] Adoption of: draft-bjorklund-netmod-snmp… David Kessens
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Randy Presuhn
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Martin Bjorklund
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Randy Presuhn
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Martin Bjorklund
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Randy Presuhn
- Re: [netmod] Adoption of: draft-bjorklund-netmod-… Wes Hardaker