Re: [netmod] 6087bis - Security Considerations template

Martin Bjorklund <mbj@tail-f.com> Tue, 07 August 2018 08:46 UTC

Return-Path: <mbj@tail-f.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3517B130F59 for <netmod@ietfa.amsl.com>; Tue, 7 Aug 2018 01:46:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZjErw3REGdKX for <netmod@ietfa.amsl.com>; Tue, 7 Aug 2018 01:46:13 -0700 (PDT)
Received: from mail.tail-f.com (mail.tail-f.com [46.21.102.45]) by ietfa.amsl.com (Postfix) with ESMTP id 1CAC1130F58 for <netmod@ietf.org>; Tue, 7 Aug 2018 01:46:13 -0700 (PDT)
Received: from localhost (unknown [173.38.220.61]) by mail.tail-f.com (Postfix) with ESMTPSA id BD7931AE0144; Tue, 7 Aug 2018 10:46:10 +0200 (CEST)
Date: Tue, 07 Aug 2018 10:46:10 +0200 (CEST)
Message-Id: <20180807.104610.1015666485913815937.mbj@tail-f.com>
To: andy@yumaworks.com
Cc: netmod@ietf.org
From: Martin Bjorklund <mbj@tail-f.com>
In-Reply-To: <CABCOCHSOZrBXFooP7jr78nvTNwitmo118qPQw-5sMvSTB6v1qQ@mail.gmail.com>
References: <87muvjges7.fsf@nic.cz> <20180806.205046.1122451156895376424.mbj@tail-f.com> <CABCOCHSOZrBXFooP7jr78nvTNwitmo118qPQw-5sMvSTB6v1qQ@mail.gmail.com>
X-Mailer: Mew version 6.7 on Emacs 24.5 / Mule 6.0 (HANACHIRUSATO)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/e4VU6iVd_OYzzRa1yB6kkaFxZsA>
Subject: Re: [netmod] 6087bis - Security Considerations template
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Aug 2018 08:46:15 -0000

Andy Bierman <andy@yumaworks.com>; wrote:
> On Mon, Aug 6, 2018 at 11:50 AM, Martin Bjorklund <mbj@tail-f.com>; wrote:
> 
> > Hi,
> >
> > Ladislav Lhotka <lhotka@nic.cz>; wrote:
> > > Hi,
> > >
> > > Shawn Emery reviewed draft-ietf-netmod-schema-mount-10 and made this
> > > editorial comment:
> > >
> > > OLD:
> > >
> > > These are the subtrees and data nodes and their
> > sensitivity/vulnerability:
> > >
> > > NEW:
> > >
> > > The following should be considered for subtrees/data nodes and their
> > > corresponding sensitivity/vulnerability:
> > >
> >
> 
> 
> I do not think the new text is better.

I agree.  So I suggest we keep the text also in schema mount.


/martin


> I think 6087bis is already stuck waiting for AD approval for a tiny change
> to the security template.
> 
> 
> 
> > > However, the OLD fomulation comes from RFC 6087, so perhaps this change
> > > should be applied in draft-ietf-netmod-rfc6087bis in the first
> > > place. The NEW formulation indeed looks better to me.
> >
> > What is the WG's opinion on this proposed text change?  6087bis is in
> > AUTH48 so if it needs to be changed it must happen now.
> >
> > Of course, we can update
> > https://trac.ietf.org/trac/ops/wiki/yang-security-guidelines even when
> > 6087bis has been published.
> >
> > If we don't want to update the template, I don't think we should
> > update the schema mount draft either.
> >
> >
> > /martin
> >
> >
> >
> Andy
> 
> 
> >
> >
> > >
> > > Lada
> > >
> > > --
> > > Ladislav Lhotka
> > > Head, CZ.NIC Labs
> > > PGP Key ID: 0xB8F92B08A9F76C67
> > >
> > > _______________________________________________
> > > netmod mailing list
> > > netmod@ietf.org
> > > https://www.ietf.org/mailman/listinfo/netmod
> > >
> >
> > _______________________________________________
> > netmod mailing list
> > netmod@ietf.org
> > https://www.ietf.org/mailman/listinfo/netmod
> >