IETF Logo Mail Archive

Re: [OPSAWG] I-D Action: draft-ietf-opsawg-tacacs-08.txt

"Douglas Gash (dcmgash)" <dcmgash@cisco.com> Mon, 19 March 2018 15:37 UTC

Return-Path: <dcmgash@cisco.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53242129C6B; Mon, 19 Mar 2018 08:37:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.529
X-Spam-Level:
X-Spam-Status: No, score=-14.529 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A1Uwtef8uPCD; Mon, 19 Mar 2018 08:37:03 -0700 (PDT)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5952F129C5D; Mon, 19 Mar 2018 08:37:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7680; q=dns/txt; s=iport; t=1521473823; x=1522683423; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=FgN+Uz/6b0DU87hqv3nxY97zBraXv042YvyZTxSf47c=; b=ROzxmtigbacahlCkoWaJ2V47L9WLdPT5xveN2eNFpk/tb+HgkerUeSyT PmWAzFgqg8/0By9puKzDFoV1XGGlR1C79o0yqq/XPsHTxxkYhlSq/YdxU TbICA7FrGymxYUy4wyD+AXdt9ZNI19LJPLSUsjEd4N3wuSugTKxdSE5r7 U=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DkAAAN2K9a/5tdJa1dGQEBAQEBAQEBAQEBAQcBAQEBAYJaSS1mcigKg1OKHI17ggOBFo5xhQ+CEgsYAQqEIE0CGoMmITQYAQIBAQEBAQECax0LhSUBAQEEAQEhSwsQAgEIEQMBAigDAgICJQsUCQgCBA4FhDRkD6kOgiYmhEiDaoIJBYUzghWDUYJ4gx4BAYFGAQE+gmgwgjEDh0GJeIZ9CQKPL40tkA4CERMBgSkBHjgzgR9wFToqAYIYg04BCI0UdI4egSKBGAEBAQ
X-IronPort-AV: E=Sophos; i="5.48,331,1517875200"; d="scan'208,217"; a="85689140"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 19 Mar 2018 15:37:02 +0000
Received: from XCH-ALN-013.cisco.com (xch-aln-013.cisco.com [173.36.7.23]) by rcdn-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id w2JFb2kP032357 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 19 Mar 2018 15:37:02 GMT
Received: from xch-aln-014.cisco.com (173.36.7.24) by XCH-ALN-013.cisco.com (173.36.7.23) with Microsoft SMTP Server (TLS) id 15.0.1320.4; Mon, 19 Mar 2018 10:37:01 -0500
Received: from xch-aln-014.cisco.com ([173.36.7.24]) by XCH-ALN-014.cisco.com ([173.36.7.24]) with mapi id 15.00.1320.000; Mon, 19 Mar 2018 10:37:01 -0500
From: "Douglas Gash (dcmgash)" <dcmgash@cisco.com>
To: "internet-drafts@ietf.org" <internet-drafts@ietf.org>
CC: "opsawg@ietf.org" <opsawg@ietf.org>
Thread-Topic: [OPSAWG] I-D Action: draft-ietf-opsawg-tacacs-08.txt
Thread-Index: AQHTv5Q7uo/gd2wOc0OFAYu3i9xDmKPYBOiA
Date: Mon, 19 Mar 2018 15:37:01 +0000
Message-ID: <DABB1B8E-0DD7-4D1C-84F7-16FADF730695@cisco.com>
References: <151905481837.18617.15913982011400739178@ietfa.amsl.com> <075DDE66-95C9-46B4-A47A-E313C39164D3@deployingradius.com> <CAB4uO_yk5f3He+hJkAoxNSD+LaZndfuGWvM1Es_wkY_XTB+bHg@mail.gmail.com>
In-Reply-To: <CAB4uO_yk5f3He+hJkAoxNSD+LaZndfuGWvM1Es_wkY_XTB+bHg@mail.gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.26.0.170902
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.229.136.16]
Content-Type: multipart/alternative; boundary="_000_DABB1B8E0DD74D1C84F716FADF730695ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/5kKaa71Ivcon4ZpSioEb8-BGnIg>
Subject: Re: [OPSAWG] I-D Action: draft-ietf-opsawg-tacacs-08.txt
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2018 15:37:05 -0000

Apologies for delay Alan, I have goofed with mail forwarding.

We still have some work to do on the security section. I will check to see which items we missed outside the security section, as I thought we had them all covered.

Clearly the last upload took rather longer than initially planned. We will respond by the end of this week with plan for schedule for next upload,

---------- Forwarded message ---------
From: Alan DeKok <aland@deployingradius.com<mailto:aland@deployingradius.com>>
Date: Mi., 21. Feb. 2018 um 08:27 Uhr
Subject: Re: [OPSAWG] I-D Action: draft-ietf-opsawg-tacacs-08.txt
To: <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>
Cc: <opsawg@ietf.org<mailto:opsawg@ietf.org>>, <i-d-announce@ietf.org<mailto:i-d-announce@ietf.org>>


  A quick review shows that many of my comments have been addressed, thanks.  This significantly clarifies the document.

  Some comments are still unaddressed.  And, the Security Considerations section contains substantial portions of my text as I pointed out earlier, with no acknowledgement that this is the case.

  Alan DeKok.

_______________________________________________
OPSAWG mailing list
OPSAWG@ietf.org<mailto:OPSAWG@ietf.org>
https://www.ietf.org/mailman/listinfo/opsawg


--
Thorsten Dahm

Network Engineer
Google Ireland Ltd.
The Gasworks, Barrow Street
Dublin 4,  Ireland

Registered in Dublin, Ireland
Registration Number: 368047

v2.23.0 | Report a Bug | By Email