Re: [OPSEC] Genart last call review of draft-ietf-opsec-v6-21

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Sat, 14 December 2019 21:22 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BD4712002E; Sat, 14 Dec 2019 13:22:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=ITjQuVdd; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=n3xMqm2G
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F4P4NK3TikCI; Sat, 14 Dec 2019 13:22:49 -0800 (PST)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6774312000F; Sat, 14 Dec 2019 13:22:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1800; q=dns/txt; s=iport; t=1576358569; x=1577568169; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ZSIceE0vL7JpDVSv7uB4t58msb/JUWEHHDngUYVvKwc=; b=ITjQuVdd2gmSAVpYl+sMCUWwOIIstEJvvRZbIDgCj5/vqX/A2vNKOW3F JHn/6OEgsaSA9ZxHok7ZUt5cNA0TJYsaIkjk1pmsYd8RD1UvFY4DMZw3D y1DyKpIUT+oQBVYixYyJavw6l3f6bbDrWzwjjsIO7tCxtspjBJHtpXe+7 8=;
IronPort-PHdr: =?us-ascii?q?9a23=3ApTklzRTxobrd6kzY/0ma1Mzettpsv++ubAcI9p?= =?us-ascii?q?oqja5Pea2//pPkeVbS/uhpkESXBdfA8/wRje3QvuigQmEG7Zub+FE6OJ1XH1?= =?us-ascii?q?5g640NmhA4RsuMCEn1NvnvOiEkDcJJV1JN9HCgOk8TE8H7NBXf?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0CbBQAMUvVd/4cNJK1lHAEBAQEBBwE?= =?us-ascii?q?BEQEEBAEBgX6BS1AFgUQgBAsqCoN5g0YDiw6COpgrgUKBEANUCQEBAQwBAS0?= =?us-ascii?q?CAQGEQAIXgXgkOBMCAw0BAQQBAQECAQUEbYU3DIVfAgEDEhERDAEBNwEPAgE?= =?us-ascii?q?IDgwCJgICAjAVEAIEAQ0FIoMAgkcDLgEDogQCgTiIYXWBMoJ+AQEFhRYYghc?= =?us-ascii?q?JgQ4ohRyGfBqBQT+BEScMFIJMPoQxL4J5MoIsjSaDDZ5LCoI0kWSBXYJEG5p?= =?us-ascii?q?IjkyaSQIEAgQFAg4BAQWBaSKBWHAVZQGCQVARFI0Sg3OKU3SBKI0IATBfAQE?=
X-IronPort-AV: E=Sophos;i="5.69,315,1571702400"; d="scan'208";a="680424168"
Received: from alln-core-2.cisco.com ([173.36.13.135]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 14 Dec 2019 21:22:48 +0000
Received: from XCH-RCD-001.cisco.com (xch-rcd-001.cisco.com [173.37.102.11]) by alln-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id xBELMmaI008241 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 14 Dec 2019 21:22:48 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-RCD-001.cisco.com (173.37.102.11) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 14 Dec 2019 15:22:47 -0600
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 14 Dec 2019 16:22:46 -0500
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Sat, 14 Dec 2019 15:22:46 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Gwjud9ry1U0vO85ntiIS4xkTB9ZHZJec2JXB+3eMJYTYsbwnLgElraGxH9Y3ZPYOYzvdii3the5akbadDr6G0/FuoVYDkypL78hFiTMWE/PHapy1GSbj1+jRqGwel+I8tT1zjHW+ea4JG3o8A7Cp/h/xgqM2ZSi8dEsDEZNSVpREmOiJRxKkI6h3Dow/ttD5NsAmLwpbtN+WRINaHjoYZnye0fqaJz6smQYHrhB3OiYby9bdCQap8NI0my6J9DYckISgGidKfjynHljm7AOUpnIY1zU9gxbyi2AwG7pCRU58dxCqnML9xF/SwbjBcKPfwqVSXCyE2bNHqo32hyQd5g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZSIceE0vL7JpDVSv7uB4t58msb/JUWEHHDngUYVvKwc=; b=HdR68IR8Cy8nq43PNTie3m1luLdae4YDBCj5rck0wGHaskB4Lot/2kdTeGbKwFtktToE4PVlny/XnGVLcHsMc7gXpeHW3WgALL+fpnxgnxzxHtHF6kfu3ytyHI3dQp4VwenZ4JH7xD/xyYkfZNJgBHrC8Nc9TkZUnenmzCV3GS2ywIOBM032/MCxnzDBa7TdzqPIVWCCLLRXmZwe7vS4wxz52qJsaXaAtJNytaoHC6PbZ0nR/zgqd4xg3wmBNb23n0u06r5yzZXhbfLqA9O8VXitQ7h6VoG3FoiwiGHWC7m89CgMTbIzwnduVKBOVCGB60gMMeNnX799JA2KxBFPLA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZSIceE0vL7JpDVSv7uB4t58msb/JUWEHHDngUYVvKwc=; b=n3xMqm2G05QINEb+puvJSOSbjbfe7U8rLf6VNLrYZj7hD0M69XxtHyEla5F/rTiHkCw79kgUwI83+NHAJ4KGRtwy2dj1cXHMxYamrbTKtR2MYIrXM6//203AheS+Ui2a7a6rDUV9nHdJxdfsevJ5Lilta+2pOUss69hkpzpPBnY=
Received: from DM5PR11MB1753.namprd11.prod.outlook.com (10.175.88.141) by DM5PR11MB1403.namprd11.prod.outlook.com (10.168.106.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2538.17; Sat, 14 Dec 2019 21:22:43 +0000
Received: from DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::6c99:679c:82cd:b955]) by DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::6c99:679c:82cd:b955%12]) with mapi id 15.20.2538.019; Sat, 14 Dec 2019 21:22:43 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Erik Kline <ek.ietf@gmail.com>, "gen-art@ietf.org" <gen-art@ietf.org>
CC: "last-call@ietf.org" <last-call@ietf.org>, "opsec@ietf.org" <opsec@ietf.org>, "draft-ietf-opsec-v6.all@ietf.org" <draft-ietf-opsec-v6.all@ietf.org>
Thread-Topic: Genart last call review of draft-ietf-opsec-v6-21
Thread-Index: AQHVssSe5oc+sq9Ik0Sk15oIi1ZZaw==
Date: Sat, 14 Dec 2019 21:22:43 +0000
Message-ID: <6DCCAA2E-E71E-4214-9C27-178A5E937983@cisco.com>
References: <157533625154.2030.12019281441540986899@ietfa.amsl.com>
In-Reply-To: <157533625154.2030.12019281441540986899@ietfa.amsl.com>
Accept-Language: fr-BE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.20.0.191208
authentication-results: spf=none (sender IP is ) smtp.mailfrom=evyncke@cisco.com;
x-originating-ip: [88.128.88.65]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e7ed5833-ab92-4418-a9a6-08d780dbc1dd
x-ms-traffictypediagnostic: DM5PR11MB1403:
x-microsoft-antispam-prvs: <DM5PR11MB14034ED09445D18BF260FF87A9570@DM5PR11MB1403.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 025100C802
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(346002)(396003)(136003)(366004)(39860400002)(199004)(189003)(186003)(4326008)(6506007)(86362001)(2616005)(5660300002)(478600001)(26005)(33656002)(2906002)(6512007)(91956017)(8936002)(316002)(76116006)(110136005)(54906003)(66946007)(64756008)(66446008)(66556008)(66476007)(36756003)(8676002)(71200400001)(6486002)(81156014)(81166006); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR11MB1403; H:DM5PR11MB1753.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 75r8TQ7IjZYgS4ur0AzJfl2V6CdR2nOrOZ/yVH6v3epuTCxrf7KhgJl+ApOUZEwVW8FyTMFHPCRuIp42883yb7+b5o4VNEJ7qbOVLoGDdUJedPZspnX4i5Qqwm1tx0fYhuIsWXXoV3XVCIVOg2A4Xosl2Kpiv9xDsFWaBWJxgSLRCPTPg3H80F7vPNY+26OZGnRAW1CWp/88qgpTkKbfzimQSacaxozIxW/q+whHnHP1NGvFEELl+8Off8UHlT2aXX9Q4QnzUqsP92bNKipOsgCDwT1KzuvZLU/GDM2fSW+28SO1aJgjV4VeuI3jjOvOqal4GaggBMGyd0ivuQZzvCnaeBYnG15WBMyZAxoet5X+OiqVRT2ohjeWcVA50Q4aBfV3ZKo4PxQ2ibVinN5uXP2QRMn2hwDEpTc4qNC5olnsEMwDFiiIdF9bu5AHOJqq
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <608B7F73BA746849B9F54E25BCCFFCFE@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: e7ed5833-ab92-4418-a9a6-08d780dbc1dd
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Dec 2019 21:22:43.2958 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: WERNljMaUBGqUChuh8WwtLRlA/E1i+opB8RJnlozD3KOI+DmsOFOD5FUWqwC64zCLeiRC8n+tHIe1N/F/uqmGg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR11MB1403
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.11, xch-rcd-001.cisco.com
X-Outbound-Node: alln-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/AFRkURFmJTPaShKJ_389CGoTndo>
Subject: Re: [OPSEC] Genart last call review of draft-ietf-opsec-v6-21
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Dec 2019 21:22:51 -0000

Hello Erik

Thank you again for the review. We have accepted all your nits except those below (see EV>). They will appear in revision -22

Regards

-éric (the other one)

On 02/12/2019, 17:24, "Erik Kline via Datatracker" <noreply@ietf.org> wrote:
    
    - It's not clear if RFC 2119 text is needed for this document as it is now.
 
EV> it does IMHO as we have some cut&paste of text from RFC having those words.

    - 2.1.5
    
        - Could perhaps more explicitly state that DHCPv6 is not mandatory
          to implement per IPv6 Node Requirements (RFC 8504).

EV> I would prefer not to mention it in the sake of brevity. DHCPv4 is also not mandated for IPv4.
    
    
    - 2.4.2
    
        - With the mention of NTP I suddenly thought: should there be
          DNS-related text as well, or does that fall within this section too?

EV> as we mention protocols used by the routers, I would say that DNS is not really required & relied upon by routers (albeit often use), I would assume that DNS is simply included in the '...'
    
    - 2.5.3
    
        - The CYMRU link doesn't seem to go to a useful page anymore.  :-/

EV> indeed, it looks like CYMRU has become a commercial company :-( unable to find the previous document :-( removed all links