[nfsv4] Re: Fwd: New Version Notification for draft-dnoveck-nfsv4-acls-05.txt
Pali Rohár <pali-ietf-nfsv4@ietf.pali.im> Wed, 21 August 2024 19:29 UTC
Return-Path: <pali-ietf-nfsv4@ietf.pali.im>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2773C14F713 for <nfsv4@ietfa.amsl.com>; Wed, 21 Aug 2024 12:29:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.004
X-Spam-Level:
X-Spam-Status: No, score=-2.004 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pali.im
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8EErUkW0d0ye for <nfsv4@ietfa.amsl.com>; Wed, 21 Aug 2024 12:29:24 -0700 (PDT)
Received: from pali.im (mail.pali.im [IPv6:2a02:2b88:6:5cc6::2a]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3D0CC14F5E0 for <nfsv4@ietf.org>; Wed, 21 Aug 2024 12:29:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pali.im; s=mail; t=1724268558; i=@pali.im; bh=StwP3aXpDI5pc44+6jdxU7ihpmbctyOGeuQwHAFN/bg=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=e+W/tUQ+w67II3/NIHah5hd9PnM/phzYSkqFcXImP2d848jUI3BU94E+6olSTsv8h kMQNyUkZomWT0BYWe0cfnyxq43vQmIwk56er5NjxAtOzkW0jjVwOqd8ipfs+r59g89 cBv9s8IRAkEGZ2wiMfX0DGCxjKITQX9hDxeryN5OUvFitm1sxzoX8gh1jLY2sHjAUr /RMw8nebawbiajMYlL98p0HlcJoXJCU1i7h7f6RCDza7N+7LnTSndiQNnzZUEpZ2dd nH0QLGeYkrnoy/2TjINcpyha+EQUat8FoM2ZbmL+L80Gsm1fHFSnokiWjWXAEnMxQ5 +MaWKAsqtZQfA==
Received: by pali.im (Postfix) id 3D6C0A6C; Wed, 21 Aug 2024 21:29:18 +0200 (CEST)
Date: Wed, 21 Aug 2024 21:29:18 +0200
From: Pali Rohár <pali-ietf-nfsv4@ietf.pali.im>
To: David Noveck <davenoveck@gmail.com>
Message-ID: <20240821192918.24qljo7kmahtxtpq@pali>
References: <172416683603.2051711.15958153716324467378@dt-datatracker-6df4c9dcf5-t2x2k> <CADaq8jdQrjGGTCcix3hS4BZPsLueRMY=1QsxQZk8e0_5n4gFZg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <CADaq8jdQrjGGTCcix3hS4BZPsLueRMY=1QsxQZk8e0_5n4gFZg@mail.gmail.com>
User-Agent: NeoMutt/20180716
Message-ID-Hash: ZD7ADTRJMJZANKDQ2W7WCX4SDTCSRLZV
X-Message-ID-Hash: ZD7ADTRJMJZANKDQ2W7WCX4SDTCSRLZV
X-MailFrom: pali-ietf-nfsv4@ietf.pali.im
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-nfsv4.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: NFSv4 <nfsv4@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [nfsv4] Re: Fwd: New Version Notification for draft-dnoveck-nfsv4-acls-05.txt
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/Tk2dQk8EYD_6N1FetP9OftA9ZiU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Owner: <mailto:nfsv4-owner@ietf.org>
List-Post: <mailto:nfsv4@ietf.org>
List-Subscribe: <mailto:nfsv4-join@ietf.org>
List-Unsubscribe: <mailto:nfsv4-leave@ietf.org>
Hello David, I would like to ask you, have you considered to include or improve fixes for issues related to ACLs which I described in my email with subject "My feedback for NFSv4.1 specification" from Aug 5? It would be nice to at least address incompatibility with Windows ACLs. Pali On Tuesday 20 August 2024 11:22:20 David Noveck wrote: > ---------- Forwarded message --------- > From: <internet-drafts@ietf.org> > Date: Tue, Aug 20, 2024 at 11:13 AM > Subject: New Version Notification for draft-dnoveck-nfsv4-acls-05.txt > To: David Noveck <davenoveck@gmail.com> > > > A new version of Internet-Draft draft-dnoveck-nfsv4-acls-05.txt has been > successfully submitted by David Noveck and posted to the > IETF repository. > > Name: draft-dnoveck-nfsv4-acls > Revision: 05 > Title: ACLs within the NFSv4 Protocols > Date: 2024-08-20 > Group: Individual Submission > Pages: 178 > URL: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-acls-05.txt > Status: https://datatracker.ietf.org/doc/draft-dnoveck-nfsv4-acls/ > HTML: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-acls-05.html > HTMLized: https://datatracker.ietf.org/doc/html/draft-dnoveck-nfsv4-acls > Diff: > https://author-tools.ietf.org/iddiff?url2=draft-dnoveck-nfsv4-acls-05 > > Abstract: > > This document is part of the set of documents intended to update the > description of NFSv4 Minor Version One as part of the rfc5661bis > respecification effort for NFv4.1. It describes the structure and > function of Access Control Lists within all existing minor versions > of NFSv4. > > It describes the structure of NFSv4 ACLs and their role in the NFSv4 > security architecture. While the focus of this document is on the > role of ACLs in providing a more flexible approach to file access > authorization than is made available by the POSIX-derived > authorization-related attributes, the potential provision of other > security-related functionality is covered as well. > > [Consensus Needed (Item #117a)]: Because of the failure of previous > specifications to provide a satisfactory approach to either of the > two ACL models for which support was originally intended, this > document clarifies the status of draft POSIX ACLs, with the > expectation that support for these might be provided via a later > extension. In addition, this document will include some small > protocol extensions to correct protocol defects, as provided for in > RFC8178. > > [Consensus Needed (Item #117a)]: In this document, the relationship > among the multiple ACL models supported has changed. A core set of > functionality, shared in large part with that derived from a subset > of the functionality provided by the now-withdrawn draft POSIX ACLs > is presented as the conceptual base of the feature set. Additional > sets of features used to provide the functionality within the NFSv4 > ACL model and the full draft POSIX ACL model are considered as > OPTIONAL extensions to that core, with the latter not yet present in > NFsv4.1. > > The current version of the document is intended, in large part, to > result in working group discussion regarding repairing problems with > previous specifications of ACL-related features and to enable work to > provide a greater degree of interoperability than has been available > heretofore. The drafts provide a framework for addressing these > issues and obtaining working group consensus regarding necessary > changes. > > When the resulting document is eventually published as an RFC, it > will supersede the descriptions of ACL structure and semantics > appearing in existing minor version specification documents for > NFSv4.0 and NFSv4.1, thereby updating RFC7530 and RFC8881. > > > > The IETF Secretariat
- [nfsv4] Fwd: New Version Notification for draft-d… David Noveck
- [nfsv4] Re: Fwd: New Version Notification for dra… Pali Rohár