Re: [OPSAWG] Start of WGLC for TACACS+ document.

t.petch <ietfc@btconnect.com> Thu, 06 October 2016 10:02 UTC

Message-ID: <025401d21fb8$71906e20$4001a8c0@gateway.2wire.net>
From: "t.petch" <ietfc@btconnect.com>
To: Alan DeKok <aland@deployingradius.com>, Warren Kumari <warren@kumari.net>
References: <CAHw9_iK-1=Epr5CLAtFayd0Bss6oZrsDTfyox6y2SfPJAav78Q@mail.gmail.com> <5019ABA9-BB74-4C69-A455-12C17A2958CE@deployingradius.com> <E6C64895-F0C6-40B8-A687-4DC56590B22E@deployingradius.com>
Date: Thu, 06 Oct 2016 11:00:05 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Received-SPF: None (protection.outlook.com: btconnect.com does not designate permitted sender hosts)
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 06 Oct 2016 10:02:27.3456 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0701MB2997
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/EzGr24IgnjFivAayYxydNedMmLE>
Cc: "opsawg@ietf.org" <OpsAWG@ietf.org>, draft-ietf-opsawg-tacacs-05@tools.ietf.org, "opsawg-chairs@tools.ietf.org" <OpsAWG-chairs@tools.ietf.org>
Subject: Re: [OPSAWG] Start of WGLC for TACACS+ document.
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Oct 2016 10:02:37 -0000

Um

Alan is right to pick up on the style - philosophical - and the
security - lack of.

But do we want to change it all at this time?

This is an Informational document describing the state of play as of
some time past, perhaps not as far back as 1997 but not for 2016.  It
would require many changes to make it a 2016 Standards Track document
but that is not what I see us doing except that is how I take Alan's
comments.

The analogy I have in mind is when SSL v3 was published, long after it
had been superseded by anyone who took security seriously, but was
needed as an RFC to refer to, although it would not pass muster because
the security thereof was too weak.  It would not have met the standards
of the day but was published  despite that.

Tom Petch


----- Original Message -----
From: "Alan DeKok" <aland@deployingradius.com>
To: "Warren Kumari" <warren@kumari.net>
Cc: "opsawg@ietf.org" <OpsAWG@ietf.org>;
<draft-ietf-opsawg-tacacs-05@tools.ietf.org>;
"opsawg-chairs@tools.ietf.org" <OpsAWG-

[OPSAWG] Start of WGLC for TACACS+ document. Warren Kumari
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. t.petch
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Douglas Gash (dcmgash)
Re: [OPSAWG] Start of WGLC for TACACS+ document. t.petch
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Douglas Gash (dcmgash)
Re: [OPSAWG] Start of WGLC for TACACS+ document. Blumenthal, Uri - 0553 - MITLL
Re: [OPSAWG] Start of WGLC for TACACS+ document. Douglas Gash (dcmgash)
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Dan Romascanu
Re: [OPSAWG] Start of WGLC for TACACS+ document. Randy Bush
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Alan DeKok
Re: [OPSAWG] Start of WGLC for TACACS+ document. Douglas Gash (dcmgash)