IETF Logo Mail Archive

Re: [pntaw] New version of draft-hutton-rtcweb-nat-firewall-considerations

Oleg Moskalenko <mom040267@gmail.com> Mon, 23 September 2013 20:28 UTC

Return-Path: <mom040267@gmail.com>
X-Original-To: pntaw@ietfa.amsl.com
Delivered-To: pntaw@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BDD921F9D38 for <pntaw@ietfa.amsl.com>; Mon, 23 Sep 2013 13:28:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.401
X-Spam-Level:
X-Spam-Status: No, score=-2.401 tagged_above=-999 required=5 tests=[AWL=0.042, BAYES_00=-2.599, HTML_MESSAGE=0.001, NO_RELAYS=-0.001, SUBJECT_FUZZY_TION=0.156]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oYwIspjhuInY for <pntaw@ietfa.amsl.com>; Mon, 23 Sep 2013 13:28:52 -0700 (PDT)
Received: from mail-wg0-x233.google.com (mail-wg0-x233.google.com [IPv6:2a00:1450:400c:c00::233]) by ietfa.amsl.com (Postfix) with ESMTP id 7A41021F9D2E for <pntaw@ietf.org>; Mon, 23 Sep 2013 13:28:52 -0700 (PDT)
Received: by mail-wg0-f51.google.com with SMTP id c11so3678609wgh.30 for <pntaw@ietf.org>; Mon, 23 Sep 2013 13:28:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=Pmk7FMbgg/5Lfat5Lt26n0dPk1s/ycDExPWYeWYvJFQ=; b=c5F9qFMO7wHjrIYjnUq/yb8tXNN15S9rI4plIvJOBQoDbx5DwtWPgB52u4fW23Uhyd 5bLtHV02ZNnUHufVhIwIpKI/d2UpRXo7vOIuye/1jta7hdXjph0ZN7YB8mMIg1NGTkKw 9fcDgYLDhpOzkn6HrtYtto53zyjZzyMpfS5X0AzX2rQ4PgRFL9cXgLwMDZd657dVtBmC ooZQJVOmVq9Ixl9qT5hTlG+GaeggR5YKA2DkvAIKFlHkFnW0Sknw8VhVqH3uYSrLycPw jwKQqnKztuT2r6WXE+mzTYuQr930i+CcmMsaQT1xKTPxNg5MbV+gxMAYjZ0hd6S2RCYo 6vKw==
MIME-Version: 1.0
X-Received: by 10.180.185.97 with SMTP id fb1mr15119665wic.61.1379968131571; Mon, 23 Sep 2013 13:28:51 -0700 (PDT)
Received: by 10.194.108.65 with HTTP; Mon, 23 Sep 2013 13:28:51 -0700 (PDT)
In-Reply-To: <52406815.9060507@gmail.com>
References: <9F33F40F6F2CD847824537F3C4E37DDF17BCF3A5@MCHP04MSX.global-ad.net> <523CCD06.3030902@gmail.com> <BLU169-W136A55AC013DA147313576D93220@phx.gbl> <523CD42E.8070102@gmail.com> <BLU169-W82036280852F26ED26283C93230@phx.gbl> <523D4F17.2040202@gmail.com> <9F33F40F6F2CD847824537F3C4E37DDF17BD01A8@MCHP04MSX.global-ad.net> <CALDtMrL5pT3MfbQufCphEKq0-pXj+JcfwW__wzG3T6wZ=TuWhg@mail.gmail.com> <9F33F40F6F2CD847824537F3C4E37DDF17BD08EA@MCHP04MSX.global-ad.net> <CALDtMrLcUrxseyiaPc_0AWJw3HPdaBuAS+xpviT2q=y4zmdNgw@mail.gmail.com> <523FD5FD.8030601@gmail.com> <5240025C.6080807@gmail.com> <52406815.9060507@gmail.com>
Date: Mon, 23 Sep 2013 13:28:51 -0700
Message-ID: <CALDtMrKBitv3ucGV=UaFj5itCMcMCnh=xj0sT+=SAhy8jhOBwA@mail.gmail.com>
From: Oleg Moskalenko <mom040267@gmail.com>
To: Melinda Shore <melinda.shore@gmail.com>
Content-Type: multipart/alternative; boundary="001a11c23e6848c1f504e712def0"
Cc: "pntaw@ietf.org" <pntaw@ietf.org>
Subject: Re: [pntaw] New version of draft-hutton-rtcweb-nat-firewall-considerations
X-BeenThere: pntaw@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion list for practices related to proxies, NATs, TURN, and WebRTC" <pntaw.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pntaw>, <mailto:pntaw-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pntaw>
List-Post: <mailto:pntaw@ietf.org>
List-Help: <mailto:pntaw-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pntaw>, <mailto:pntaw-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Sep 2013 20:28:53 -0000

On Mon, Sep 23, 2013 at 9:11 AM, Melinda Shore <melinda.shore@gmail.com>wrote:

> On 9/23/13 12:57 AM, Sergio Garcia Murillo wrote:
> > Would you
> > be willing to collaborate in writing it by listing which kind of issues
> > would you like to be
> > covered in there?
>
> Yes, definitely.


That's great !


> The state of security considerations
> text is something that should be considered a priority.
> FWIW I don't think that protecting pinhole-punching
> technologies from being subverted by attackers is easy.
>

This is a grey area of the technology and addressing some areas of concerns
would be very helpful.

The difficulties are objective and natural because the whole field of NAT
technology (and the fact that NAT deployment and firewall deployment are
related) is somewhat of imperfect nature.




>
> Melinda
>
>
> _______________________________________________
> pntaw mailing list
> pntaw@ietf.org
> https://www.ietf.org/mailman/listinfo/pntaw
>

v2.23.0 | Report a Bug | By Email