Re: [radext] Alissa Cooper's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS and COMMENT)
"David B. Nelson" <d.b.nelson@comcast.net> Tue, 06 September 2016 15:42 UTC
Return-Path: <d.b.nelson@comcast.net>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA38A12B7CE for <radext@ietfa.amsl.com>; Tue, 6 Sep 2016 08:42:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.208
X-Spam-Level:
X-Spam-Status: No, score=-4.208 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-1.508, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FW7D2xrq_m5A for <radext@ietfa.amsl.com>; Tue, 6 Sep 2016 08:42:26 -0700 (PDT)
Received: from resqmta-ch2-03v.sys.comcast.net (resqmta-ch2-03v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:35]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 012CA12B657 for <radext@ietf.org>; Tue, 6 Sep 2016 08:22:27 -0700 (PDT)
Received: from resomta-ch2-10v.sys.comcast.net ([69.252.207.106]) by resqmta-ch2-03v.sys.comcast.net with SMTP id hIBvb4TQu8GkChIChbNKjy; Tue, 06 Sep 2016 15:22:27 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20140121; t=1473175347; bh=q4lY2IaD/gH/2lNfHPp6cFHcPOEyU8+f+lNw+5D2HlQ=; h=Received:Received:Date:From:To:Message-ID:Subject:MIME-Version: Content-Type; b=fnI/mq7xC6d0E9zSfUkmffAmtX7kxORwdn49hkut+sgWdU6P/QBnntcTyAbt18ub2 q6HbgzlDOdCL4PWKyKc+EuJ7zYsFyqcFaji4fHANOKx6QCOiFCA4ALdPOhe4EI/E7H i/Qf6ubVHI/hngK5iHY894u9TjeIr5Dh/kpr0gcZQA1lN7dJAs3jMmvSfhriWeMUV9 7tu1FQczS2Xt6jJpotcW3SxFBN3rrBAWy0N23aQ888EKpbHWzcb2rNnzcW/efNX42M lHBLTVbQucNpEZtRsfYO9HsMFY+NN69wkkfq25cxazVzLUR1JecIO5L4UemgD29Ae/ eiNv9PQPlTMrA==
Received: from resmail-ch2-375v.sys.comcast.net ([162.150.49.154]) by resomta-ch2-10v.sys.comcast.net with SMTP id hICgbDtZZqnakhICgbPVcu; Tue, 06 Sep 2016 15:22:27 +0000
Date: Tue, 06 Sep 2016 15:22:26 +0000
From: "David B. Nelson" <d.b.nelson@comcast.net>
To: lionel morand <lionel.morand@orange.com>
Message-ID: <1665923093.11596755.1473175346518.JavaMail.zimbra@comcast.net>
In-Reply-To: <17466_1473152611_57CE8663_17466_5602_1_6B7134B31289DC4FAF731D844122B36E01F9ECE4@OPEXCLILM43.corporate.adroot.infra.ftgroup>
References: <147137412687.22998.17081075232946825763.idtracker@ietfa.amsl.com> <CAHbuEH7+Gw=zDiN66Aydmie2M4dXcVqjLKWHixR7Qe6ECfN9Hg@mail.gmail.com> <D0152C61-D391-482B-BF1E-45180F89DA41@cooperw.in> <EACFFDF5-3974-4778-8EDD-A68410BAD972@gmail.com> <17466_1473152611_57CE8663_17466_5602_1_6B7134B31289DC4FAF731D844122B36E01F9ECE4@OPEXCLILM43.corporate.adroot.infra.ftgroup>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [::ffff:73.47.77.230]
X-Mailer: Zimbra 8.0.7_GA_6031 (ZimbraWebClient - SAF9.1 (Mac)/8.0.7_GA_6031)
Thread-Topic: Alissa Cooper's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS and COMMENT)
Thread-Index: AQHR9/Cwu6n7TFEfE0aWCTw3JOS72qBL68EAgAADpYCAAAXuAIAfD2BwqSufjMY=
X-CMAE-Envelope: MS4wfKLiCNHNGmVug/TfrI6UlueUvhNJvCU97fWi9N3EC5mN6lJFEWOMIQf4fZd0fgraSGzQEpAoaAkZf9nIKqIscDv18gfRaaDX7sNWo2JTbt2qpYQ34k45 +fUYI48Dfy7Py3HLHMSD2uDSXjNv+dEE59InZawOGuMGpf3/JSab8vJ4WncV0IA9P9nKlqT+PtASFyK2dXaZsXWVGYR3u1eY/TMVyUfGedVoL2GO3CqB071l UfId9KXvzhn5DOt0gU1wjYQQr9KZHQKammmYXmeTmWB4cIya1ROgpPL8nlAFb0uDlKI6YxJAXN38d5k1rTPgVnluEWFcMwJvV5jPqCgdL4phTzbfMRJVIGNG HkfGPbFhwgzhC4dnKnUwD5qD/D3ZuR8T7daktZnvH+LNAruKCc+YXw+6n2e8+ziQF/A9jBlBUF7MEHAWWITrCr2thP82Kg==
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/4ot5YgNfHtEi878WIwUJbvQeIf4>
Cc: draft-ietf-radext-ip-port-radius-ext@ietf.org, radext@ietf.org, Alissa Cooper <alissa@cooperw.in>, kathleen moriarty ietf <kathleen.moriarty.ietf@gmail.com>, IESG <iesg@ietf.org>, radext-chairs@ietf.org
Subject: Re: [radext] Alissa Cooper's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS and COMMENT)
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Sep 2016 15:42:32 -0000
Lionel wrote: > My understanding is that, when defining authorization type attributes that > are use over RADIUS, it is not deemed required to define the specific use of > these attributes nor the error handling. Yes and no. While attributes can be re-used in multiple applications and use cases, the *semantics* of the authorization needs to be unambiguous. Remember, RADIUS doesn't have the notion of applications, so the meaning of attributes needs to be idempotent, if good interoperability to to be achieved. > As for other AAA documents, this draft is not specifying a specific procedure > or a new protocol application. It is just about defining attributes that can > be used in the use case described in this document but also in any other > solution that would see advantage to reuse these attributes. Yes, but see above. > The main point of this document is to ensure that the definitions of these > attributes are correct (type, length, value), unambiguous and describe in > which messages they can appear. The definition of RADIUS attributes also includes their semantics, not just their syntax. > The exact behavior of the client/server using these attributes is often left > out of this kind of document. It is up to the specification describing the > implementation the clients and/or servers using these attributes to define > this error handling. I disagree. Leaving out semantics and client/server behavior is not traditional for RADIUS and is likely to lead to poor interoperability. Regards, Dave Nelson
- Re: [radext] Alissa Cooper's Discuss on draft-iet… kathleen.moriarty.ietf
- Re: [radext] Alissa Cooper's Discuss on draft-iet… kathleen.moriarty.ietf
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alissa Cooper
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Kathleen Moriarty
- [radext] Alissa Cooper's Discuss on draft-ietf-ra… Alissa Cooper
- Re: [radext] Alissa Cooper's Discuss on draft-iet… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alan DeKok
- [radext] RE : Re: Alissa Cooper's Discuss on draf… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alan DeKok
- Re: [radext] Alissa Cooper's Discuss on draft-iet… David B. Nelson
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Dean cheng
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alissa Cooper
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alissa Cooper
- Re: [radext] Alissa Cooper's Discuss on draft-iet… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alan DeKok
- Re: [radext] Alissa Cooper's Discuss on draft-iet… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… lionel.morand
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alan DeKok
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Kathleen Moriarty
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Alan DeKok
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Kathleen Moriarty
- Re: [radext] Alissa Cooper's Discuss on draft-iet… Kathleen Moriarty