IETF Logo Mail Archive

[OPSAWG] Start of WGLC for TACACS+ document.

Warren Kumari <warren@kumari.net> Mon, 03 October 2016 21:02 UTC

Return-Path: <warren@kumari.net>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7889E129545 for <opsawg@ietfa.amsl.com>; Mon, 3 Oct 2016 14:02:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TxCI3qAMCG4L for <opsawg@ietfa.amsl.com>; Mon, 3 Oct 2016 14:02:37 -0700 (PDT)
Received: from mail-qk0-x22f.google.com (mail-qk0-x22f.google.com [IPv6:2607:f8b0:400d:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CBAE5129550 for <OpsAWG@ietf.org>; Mon, 3 Oct 2016 14:02:36 -0700 (PDT)
Received: by mail-qk0-x22f.google.com with SMTP id t7so175351310qkh.2 for <OpsAWG@ietf.org>; Mon, 03 Oct 2016 14:02:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to; bh=uQwDQ7YAiTeZ1n5VuHcczGupHbHMRR/tll5t1cvZfJY=; b=ZQQEHQXLjO1l0VMQpxmO15WfDHDZEDQfyZIr7JSmIBEDc7ZWhyPwdxxVNOZea/7qUg DROFzrr9WcHloe9qkIlsWftAXdDqb1iL1hw69FkQKznfC1uNWwaXb1nUW4jQ7Xa9sLbl bLpOefCz8IIDJSSL8FTvkseqME+YkGLFlr+vAFn5togWlD0012f7YuXwBG/sDkx1/Ziq W0uqca+KWj2CtMZp3m7SxYFr2afB04fXfh1Kt/HxDTWf8GgUeagX2PHK56lgCaCrlooq aLer05C5s/tzNf0EELm8Rev+r6ekCQ9ucFo00hjasscyArerugElU+W7e5YFqy/p2iAQ ZKBA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=uQwDQ7YAiTeZ1n5VuHcczGupHbHMRR/tll5t1cvZfJY=; b=Y9F9vCmnLvSzDBWvmPZkj35j2kbIWVLrHVcD/yn0DSsNaKwJs3BH8qBFifs6Ch6n1Z /qYJamlSj3byw0j12gs4O99oJuxefBAsYsQA+MyzHqsS+l3+I3mY6r+D4JabfYdxwag9 RA9CZJ8wAGoQ3zR+szjFFX7PlJB3w1fWJV/25Kkw+Sb6ya07zzCAmwcctr1gJ/Ci7WT9 J2CoCwhDH1TddKBMhnuqBPada+D1bQGEZ/9QWYdFkJ/2WYlD+pPpiIKqePkca7FDTe9v o7t2jne81MRdFDXrczEIqQQbD6FgZ4TOEEs4acxU5CUjSET2HiNabsgOSzfHxuLqJQLx Uozw==
X-Gm-Message-State: AA6/9Rmwvx5aMK5HMC2oOuUZ3PaYj8V1uwtgSjpz50NmOspX7hcQD+VCccQpA09Da1nCraFXPU8F/NIQKCNigmco
X-Received: by 10.55.188.195 with SMTP id m186mr74799qkf.180.1475528555646; Mon, 03 Oct 2016 14:02:35 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.55.147.196 with HTTP; Mon, 3 Oct 2016 14:02:05 -0700 (PDT)
From: Warren Kumari <warren@kumari.net>
Date: Mon, 03 Oct 2016 17:02:05 -0400
Message-ID: <CAHw9_iK-1=Epr5CLAtFayd0Bss6oZrsDTfyox6y2SfPJAav78Q@mail.gmail.com>
To: "opsawg@ietf.org" <OpsAWG@ietf.org>, draft-ietf-opsawg-tacacs-05@tools.ietf.org, "opsawg-chairs@tools.ietf.org" <OpsAWG-chairs@tools.ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/7DEGw9cw2XsWx5uTnsyps8cLceE>
Subject: [OPSAWG] Start of WGLC for TACACS+ document.
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Oct 2016 21:02:38 -0000

Dear OpsAWG WG,

The authors of draft-ietf-opsawg-tacacs-05 have indicated that they
believe that the document is ready, and have asked for Working Group
Last Call.

This WGLC ends Mon 17-Oct-2016.

Please review this draft to see if you think it is ready for
publication and send comments to the list, clearly stating your view.
Please note that "Yeah, I reviewed it, it looks great!" is a useful
comment (well, more useful than silence).


Please note that this document is primarily describing an existing
protocol, *NOT* designing a new one.  This means that comments of the
form "Ick, this uses MD5?! You *so* should replace it with
[SHA-512|BLAKE2|GOST|SWIFFT|<etc>]" or "flags should be 16bits, not 8,
what if we want to extend this?" are not helpful.

Also, we already know that this protocol has security issues. The plan
is to publish this document, finally documenting (after 19 years) one
of the core protocols used by network people. Once this is done, there
will be a new document published, extending this to be more secure.
There is some history behind this decision...

The draft is available here (for easy clickin'):
https://datatracker.ietf.org/doc/draft-ietf-opsawg-tacacs-05/



In addition, to satisfy RFC 6702 ("Promoting Compliance with
Intellectual Property Rights (IPR)"):
Are you personally aware of any IPR that applies to
draft-ietf-opsawg-tacacs-05?  If so, has this IPR been disclosed in
compliance with IETF IPR rules? (See RFCs 3979, 4879, 3669, and 5378
for more details.)

Thanks,
Warren Kumari
(as OpsAWG WG co-chair)


-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf

v2.23.0 | Report a Bug | By Email