IETF Logo Mail Archive

Re: [ntpwg] Pending NTP WG Last Call on Autokey

Danny Mayer <mayer@ntp.isc.org> Sat, 03 May 2008 22:58 UTC

Return-Path: <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>
X-Original-To: ietfarch-ntp-archives-ahFae6za@core3.amsl.com
Delivered-To: ietfarch-ntp-archives-ahFae6za@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F174C3A6D73 for <ietfarch-ntp-archives-ahFae6za@core3.amsl.com>; Sat, 3 May 2008 15:58:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Demg1f9u7McE for <ietfarch-ntp-archives-ahFae6za@core3.amsl.com>; Sat, 3 May 2008 15:58:59 -0700 (PDT)
Received: from mail1.ntp.org (mail1.ntp.org [204.152.184.126]) by core3.amsl.com (Postfix) with ESMTP id CD7093A69F3 for <ntp-archives-ahFae6za@lists.ietf.org>; Sat, 3 May 2008 15:58:27 -0700 (PDT)
Received: from ntp1.isc.org (localhost [127.0.0.1]) by mail1.ntp.org (Postfix) with ESMTP id 0FC4139E80 for <ntp-archives-ahFae6za@lists.ietf.org>; Sat, 3 May 2008 22:58:29 +0000 (UTC) (envelope-from ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org)
X-Original-To: ntpwg@lists.ntp.org
Delivered-To: ntpwg@lists.ntp.org
Received: from localhost (localhost [127.0.0.1]) by mail1.ntp.org (Postfix) with ESMTP id 7301A39E5A for <ntpwg@lists.ntp.org>; Sat, 3 May 2008 22:58:07 +0000 (UTC) (envelope-from mayer@ntp.isc.org)
Received: from mail1.ntp.org ([127.0.0.1]) by localhost (ntp1.isc.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 24949-05 for <ntpwg@lists.ntp.org>; Sat, 3 May 2008 22:57:29 +0000 (UTC)
Received: from mail2.ntp.org (mail2.ntp.org [204.152.184.138]) by mail1.ntp.org (Postfix) with ESMTP for <ntpwg@lists.ntp.org>; Sat, 3 May 2008 22:57:28 +0000 (UTC) (envelope-from mayer@ntp.isc.org)
Received: from 65-86-158-146.client.dsl.net (65-86-158-146.client.dsl.net [65.86.158.146]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mail2.ntp.org (Postfix) with ESMTP id 7A0F1398D5; Sat, 3 May 2008 22:57:28 +0000 (UTC) (envelope-from mayer@ntp.isc.org)
Received: from host178.209-113-182.oem.net ([209.113.182.178] helo=[172.16.2.77]) by 65-86-158-146.client.dsl.net with esmtpsa (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from <mayer@ntp.isc.org>) id 1JsQfL-0005zm-E5; Sat, 03 May 2008 18:57:15 -0400
Message-ID: <481CEDAA.7070709@ntp.isc.org>
Date: Sat, 03 May 2008 18:56:42 -0400
From: Danny Mayer <mayer@ntp.isc.org>
User-Agent: Thunderbird 2.0.0.14 (Windows/20080421)
MIME-Version: 1.0
To: "David L. Mills" <mills@udel.edu>
References: <481B18CC.3020308@innovationslab.net> <481B3357.1050207@ntp.isc.org> <481B4370.4040308@udel.edu>
In-Reply-To: <481B4370.4040308@udel.edu>
X-kostecke.net-MailScanner: Found to be clean
X-kostecke.net-MailScanner-From: mayer@ntp.isc.org
Cc: NTP Working Group <ntpwg@lists.ntp.org>
Subject: Re: [ntpwg] Pending NTP WG Last Call on Autokey
X-BeenThere: ntpwg@lists.ntp.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: mayer@ntp.isc.org
List-Id: IETF Working Group for Network Time Protocol <ntpwg.lists.ntp.org>
List-Unsubscribe: <https://lists.ntp.org/mailman/listinfo/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=unsubscribe>
List-Archive: <https://lists.ntp.org/pipermail/ntpwg>
List-Post: <mailto:ntpwg@lists.ntp.org>
List-Help: <mailto:ntpwg-request@lists.ntp.org?subject=help>
List-Subscribe: <https://lists.ntp.org/mailman/listinfo/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org
Errors-To: ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org

Dave,

My proposal that I sent out quite a long time ago was to steal a bit 
from the length field and set it to 1 for the updated protocol so that 
the particulars of the autokey protocol remains private inside the 
header extension itself and keeps it outside the field type. That way 
the servers (including those of NIST, USNO, etc.) can continue to work 
with both versions (the old and the new). The old clients (servers) will 
continue to work. Taking away one bit from the length field reduces the 
maximum extension length from 65535 to 32767 which I don't think we will 
ever need or can use.

It's this lack of privacy of this data that causes interoperability 
problems between Autokey and Microsoft's MS-SNTP protocols, otherwise 
this issue would never have arisen.

Danny

David L. Mills wrote:
> Danny,
> 
> I hear no proposals about extension fields other than my last proposed 
> rewrite of that section. There really is no wiggle room other than 
> deprecating Autokey in its present form and reformatting the headers. I 
> am not opposed to that in principle, but others, specificlly USNO, have 
> not been heard from.
> 
> Dave
_______________________________________________
ntpwg mailing list
ntpwg@lists.ntp.org
https://lists.ntp.org/mailman/listinfo/ntpwg

v2.40.1 | Report a Bug | By Email | System Status