Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3
"J. Bruce Fields" <bfields@fieldses.org> Wed, 15 May 2013 21:08 UTC
Return-Path: <bfields@fieldses.org>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 975E321F84F5 for <nfsv4@ietfa.amsl.com>; Wed, 15 May 2013 14:08:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yGwqC0HhKuux for <nfsv4@ietfa.amsl.com>; Wed, 15 May 2013 14:08:26 -0700 (PDT)
Received: from fieldses.org (fieldses.org [174.143.236.118]) by ietfa.amsl.com (Postfix) with ESMTP id 80A6311E80AD for <nfsv4@ietf.org>; Wed, 15 May 2013 14:08:26 -0700 (PDT)
Received: from bfields by fieldses.org with local (Exim 4.76) (envelope-from <bfields@fieldses.org>) id 1Ucivv-0007Cg-IK; Wed, 15 May 2013 17:08:23 -0400
Date: Wed, 15 May 2013 17:08:23 -0400
From: "J. Bruce Fields" <bfields@fieldses.org>
To: "Haynes, Tom" <Tom.Haynes@netapp.com>
Message-ID: <20130515210823.GH25994@fieldses.org>
References: <039D3CB813A4D544863BB7D4F46A1857306DB713@TK5EX14MBXC254.redmond.corp.microsoft.com> <49CB0DA5-1EDA-4B05-AB1C-660D94A51D8B@netapp.com> <20130515193956.GB25994@fieldses.org> <0911C1D8-35EE-49C9-844C-06ED3E366E89@netapp.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <0911C1D8-35EE-49C9-844C-06ED3E366E89@netapp.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Cc: nfsv4 list <nfsv4@ietf.org>
Subject: Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nfsv4>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 May 2013 21:08:30 -0000
On Wed, May 15, 2013 at 08:58:03PM +0000, Haynes, Tom wrote: > > On May 15, 2013, at 12:39 PM, J. Bruce Fields <bfields@fieldses.org> wrote: > > > On Wed, May 15, 2013 at 04:13:46PM +0000, Haynes, Tom wrote: > >> The issue with the RPCSEC I-D is that we do not know what is remaining to be done. > >> > >> I do not like option c. > >> > >> I do not like option b, in my mind that opens us up for the same type > >> of issues we saw with migration. > > > > Could you elaborate? > > Just a rough feeling that if we leave out inter-server, by the time we get > back to it, we will find issues as implementations diverge from the spec. OK, so you're referring to the issues discussed e.g. in http://tools.ietf.org/html/draft-noveck-nfsv4-migration-issues-00. I still don't understand what you mean by "opens us up for the same type of issues". --b. > >> We have existing implementations of server side copy that do not use > >> RPCSEC_GSSv3. > > > > Which implementations exactly are you referring to? > > > >> Whether the mechanism is proprietary or NFSv4.x should not matter. So > >> I do not like all of option a. > > > >> What I would like to see is that we keep enough in place such that > >> when RPCSEC_GSSv3 is delivered, we can produced a smaller document > >> specific to all NFSv4.2+ implementations that will allow it to be > >> incorporated. > > > > So I think you're choosing some variant of option a), but I think the > > details here are tricky. > > > > Yes, a variant of A. > > And yes, tricky, but Spencer did ask for opinions. > > I want us to deliver something that people can use and that can grow > to meet future security needs.
- [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Spencer Shepler
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- [nfsv4] [PATCH 1/2] Remove dependency of labeled … J. Bruce Fields
- [nfsv4] [PATCH 2/2] Remove inter-server copy lang… J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 McDonald, Alex
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 'bfields@fieldses.org'
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 1/2] Remove dependency of labe… Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 1/2] Remove dependency of labe… J. Bruce Fields
- Re: [nfsv4] [PATCH 1/2] Remove dependency of labe… Haynes, Tom
- Re: [nfsv4] [PATCH 1/2] Remove dependency of labe… Myklebust, Trond
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Noveck, David
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Spencer Shepler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Noveck, David
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Spencer Shepler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Spencer Shepler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Noveck, David
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Spencer Shepler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 McDonald, Alex
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 'bfields@fieldses.org'
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 McDonald, Alex
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 'bfields@fieldses.org'
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 bfields@fieldses.org
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Spencer Shepler
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Noveck, David
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Mike Eisler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Mike Eisler
- Re: [nfsv4] [PATCH 2/2] Remove inter-server copy … Noveck, David
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Spencer Shepler
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 David Quigley
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 faibish, sorin
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Noveck, David
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Spencer Shepler
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Spencer Shepler
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Noveck, David
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 J. Bruce Fields
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Nico Williams
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Haynes, Tom
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Noveck, David
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Andy Adamson
- Re: [nfsv4] Soliciting next steps for RPCSEC_GSSv3 Noveck, David