Re: [OPSEC] Fwd: ID Tracker State Update Notice: <draft-ietf-opsec-protect-control-plane-06.txt>
"Smith, Donald" <Donald.Smith@qwest.com> Fri, 07 January 2011 05:43 UTC
Return-Path: <Donald.Smith@qwest.com>
X-Original-To: opsec@core3.amsl.com
Delivered-To: opsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 616123A677C for <opsec@core3.amsl.com>; Thu, 6 Jan 2011 21:43:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gc8ONmtWozfu for <opsec@core3.amsl.com>; Thu, 6 Jan 2011 21:43:32 -0800 (PST)
Received: from sudnp799.qwest.com (sudnp799.qwest.com [155.70.32.99]) by core3.amsl.com (Postfix) with ESMTP id 642AC3A6405 for <opsec@ietf.org>; Thu, 6 Jan 2011 21:43:32 -0800 (PST)
Received: from lxdenvmpc030.qintra.com (lxdenvmpc030.qintra.com [10.1.51.30]) by sudnp799.qwest.com (8.14.4/8.14.4) with ESMTP id p075jZPs019967 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 6 Jan 2011 22:45:35 -0700 (MST)
Received: from lxdenvmpc030.qintra.com (unknown [127.0.0.1]) by IMSA (Postfix) with ESMTP id 606681E0049; Thu, 6 Jan 2011 22:45:30 -0700 (MST)
Received: from suomp60i.qintra.com (unknown [151.119.91.93]) by lxdenvmpc030.qintra.com (Postfix) with ESMTP id 2F4331E0035; Thu, 6 Jan 2011 22:45:30 -0700 (MST)
Received: from qtdenexhtm20.AD.QINTRA.COM (localhost [127.0.0.1]) by suomp60i.qintra.com (8.14.4/8.14.4) with ESMTP id p075jScO018058; Thu, 6 Jan 2011 23:45:29 -0600 (CST)
Received: from qtdenexmbm24.AD.QINTRA.COM ([151.119.91.226]) by qtdenexhtm20.AD.QINTRA.COM ([151.119.91.229]) with mapi; Thu, 6 Jan 2011 22:45:29 -0700
From: "Smith, Donald" <Donald.Smith@qwest.com>
To: Ronald Bonica <rbonica@juniper.net>, George Jones <fooologist@gmail.com>, John Kristoff <jtk@cymru.com>
Date: Thu, 06 Jan 2011 22:43:23 -0700
Thread-Topic: [OPSEC] Fwd: ID Tracker State Update Notice: <draft-ietf-opsec-protect-control-plane-06.txt>
Thread-Index: AcusZ94Jq//Jq/+uQ4SFHxYKlNWARgBeYg0AABMZiis=
Message-ID: <B01905DA0C7CDC478F42870679DF0F100CFD6D7A6B@qtdenexmbm24.AD.QINTRA.COM>
References: <20101223193418.26547.34582.idtracker@localhost> <64E1A73D-2221-4035-8E77-79A6515A0DC3@kumari.net> <20110104092257.2ff16390@t61p> <AANLkTinsOZrbJ2+5pSVnTxFXcw0QLuPR5Q5guN6ZWE8n@mail.gmail.com>, <13205C286662DE4387D9AF3AC30EF456B03C23767C@EMBX01-WF.jnpr.net>
In-Reply-To: <13205C286662DE4387D9AF3AC30EF456B03C23767C@EMBX01-WF.jnpr.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Cc: "opsec@ietf.org mailing list" <opsec@ietf.org>, Warren Kumari <warren@kumari.net>
Subject: Re: [OPSEC] Fwd: ID Tracker State Update Notice: <draft-ietf-opsec-protect-control-plane-06.txt>
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jan 2011 05:43:34 -0000
We do that kind of testing:) Testing methods and practices are nearly forgotten amongst many shops today but we still find enough to do fairly through testing (and reap the benefits of it:) (coffee != sleep) & (!coffee == sleep) Donald.Smith@qwest.com<mailto:Donald.Smith@qwest.com> ________________________________ From: opsec-bounces@ietf.org [opsec-bounces@ietf.org] On Behalf Of Ronald Bonica [rbonica@juniper.net] Sent: Thursday, January 06, 2011 1:41 PM To: George Jones; John Kristoff Cc: opsec@ietf.org mailing list; Warren Kumari Subject: Re: [OPSEC] Fwd: ID Tracker State Update Notice: <draft-ietf-opsec-protect-control-plane-06.txt> Response inline…… From: opsec-bounces@ietf.org [mailto:opsec-bounces@ietf.org] On Behalf Of George Jones Sent: Tuesday, January 04, 2011 6:34 PM To: John Kristoff Cc: opsec@ietf.org mailing list; Warren Kumari Subject: Re: [OPSEC] Fwd: ID Tracker State Update Notice: <draft-ietf-opsec-protect-control-plane-06.txt> On Tue, Jan 4, 2011 at 10:22 AM, John Kristoff <jtk@cymru.com<mailto:jtk@cymru.com>> wrote: On Thu, 23 Dec 2010 15:22:22 -0500 Warren Kumari <warren@kumari.net<mailto:warren@kumari.net>> wrote: > So, our active queue is beginning to look very sparse... I have a > draft that I started writing a while ago that Chris Morrow and Danny > McPherson have agreed to fix / update (poke...), does anyone have > anything else that they are working on? I had started a port filtering draft. A second revision has been started, but we haven't spent much time on it lately. I can endeavor to get this work going again this week. <http://tools.ietf.org/html/draft-kristoff-opsec-port-filtering-00> This is very important work! Please continue. Looks like you were tackling the "what to filter and why" + gotchas. Noble. Useful. But if the device just can't do it, not sufficient. I recommend that you continue on these lines. If the device can’t fulfill you requirements, maybe the RFC will motivate the vendors to enhance the device’s filtering capabilities. Again, what I had in mind was as series of docs that provide testable security features, possibly paired with a test methodology. Before diving into any serious work, though, it would be worth asking the question, would anybody care/be positively impacted if the docs were finished. I believe that this would be helpful both to the operator and vendor communities, New operators would learn what to filter. Application and protocol developers would learn what is likely to be filtered. Ron Does anybody do this sort of testing? Would they? Would a list in the form of RFCs help ? ----George Jones ________________________________ This communication is the property of Qwest and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.
- [OPSEC] Fwd: ID Tracker State Update Notice: <dra… Warren Kumari
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Joel Jaeggli
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … George Jones
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … John Kristoff
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Smith, Donald
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … George Jones
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Joel Jaeggli
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Fernando Gont
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Christopher Morrow
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Jared Mauch
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Ronald Bonica
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Smith, Donald
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … George Jones
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … George Jones
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Smith, Donald
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Warren Kumari
- Re: [OPSEC] Fwd: ID Tracker State Update Notice: … Joel Jaeggli