Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization
Fernando Gont <fgont@si6networks.com> Mon, 07 September 2020 17:24 UTC
Return-Path: <fgont@si6networks.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F5AA3A0CCE for <ntp@ietfa.amsl.com>; Mon, 7 Sep 2020 10:24:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.505
X-Spam-Level:
X-Spam-Status: No, score=-1.505 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DATE_IN_PAST_24_48=1.34, NICE_REPLY_A=-0.948, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rlhxSE6DO-sO for <ntp@ietfa.amsl.com>; Mon, 7 Sep 2020 10:24:55 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [91.239.96.14]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 146E03A0CCA for <ntp@ietf.org>; Mon, 7 Sep 2020 10:24:51 -0700 (PDT)
Received: from [10.0.0.134] (unknown [186.19.8.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id 844D1280DAC; Mon, 7 Sep 2020 17:24:44 +0000 (UTC)
To: kristof.teichel@ptb.de, Karen O'Donoghue <odonoghue@isoc.org>
Cc: NTP WG <ntp@ietf.org>
References: <44F873E2-5680-4027-847B-A25E968AFB26@isoc.org> <OF0A67CE21.FDD45D13-ONC12585D1.0038F4AF-C12585D1.003AB753@ptb.de>
From: Fernando Gont <fgont@si6networks.com>
Message-ID: <440ed362-eb71-190a-e04d-64706afb3bdd@si6networks.com>
Date: Sun, 06 Sep 2020 12:25:00 -0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.1
MIME-Version: 1.0
In-Reply-To: <OF0A67CE21.FDD45D13-ONC12585D1.0038F4AF-C12585D1.003AB753@ptb.de>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/5Awn0fXYuHDPr-tE9U1ZsLCb39Q>
Subject: Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Sep 2020 17:24:58 -0000
Hello, Kristof, On 27/8/20 07:41, kristof.teichel@ptb.de wrote: > Hello, > > here is a short list of typos and other minor (easily correctible) > issues that I found: > - Section 3.1, second paragraph: "this considerations" (fix > singular/plural discrepancy) Will do. > - Section 7: "However, the NTP specification has traditionally followed > a pattern of employing common settings and code even when not strictly > necessary, which at times has resulted in negative security and privacy > implications (see e.g. [I-D.ietf-ntp-data-minimization])." Subjectively, > I find the tone of this unnecessarily negative, and think the document > might be better off if the sentence is dropped and the sentence Could you pleas clarify which part you deem as being overly negative? And, also, which part you suggest to leave off? > afterward updated in order to fit the context but remain more objective > (also, that sentence might benefit from being split in two by a period > before "[such] unnecessary usage"). " The use of the NTP service port (123) for the srcport and dstport variables is not required for all operating modes. Such unnecessary usage comes at the expense of reducing the amount of work required for an attacker to successfully..." ? Thanks! Regards, -- Fernando Gont SI6 Networks e-mail: fgont@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
- [Ntp] WGLC: draft-ietf-ntp-port-randomization Karen O'Donoghue
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization kristof.teichel
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Salz, Rich
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Watson Ladd
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Tomoyuki Sahara
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Fernando Gont
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Dhruv Dhody
- [Ntp] Antw: [EXT] Re: WGLC: draft-ietf-ntp-port-r… Ulrich Windl
- Re: [Ntp] Antw: [EXT] Re: WGLC: draft-ietf-ntp-po… Fernando Gont
- Re: [Ntp] WGLC: draft-ietf-ntp-port-randomization Fernando Gont