IETF Logo Mail Archive

Re: [radext] [dhcwg] draft-ietf-dhc-dhcpv6-radius-opt-10

Ted Lemon <Ted.Lemon@nominum.com> Thu, 04 April 2013 21:04 UTC

Return-Path: <Ted.Lemon@nominum.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6866B21F86FA; Thu, 4 Apr 2013 14:04:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7B3-zLP8yL+u; Thu, 4 Apr 2013 14:04:03 -0700 (PDT)
Received: from exprod7og126.obsmtp.com (exprod7og126.obsmtp.com [64.18.2.206]) by ietfa.amsl.com (Postfix) with ESMTP id C3F9721F862A; Thu, 4 Apr 2013 14:04:02 -0700 (PDT)
Received: from shell-too.nominum.com ([64.89.228.229]) (using TLSv1) by exprod7ob126.postini.com ([64.18.6.12]) with SMTP ID DSNKUV3qwu/QmZ2bXFd1qJ+XhiOvId1kssSD@postini.com; Thu, 04 Apr 2013 14:04:02 PDT
Received: from archivist.nominum.com (archivist.nominum.com [64.89.228.108]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.nominum.com", Issuer "Go Daddy Secure Certification Authority" (verified OK)) by shell-too.nominum.com (Postfix) with ESMTP id 6F2FF1080A0; Thu, 4 Apr 2013 14:04:02 -0700 (PDT)
Received: from webmail.nominum.com (cas-01.win.nominum.com [64.89.228.131]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (Client CN "mail.nominum.com", Issuer "Go Daddy Secure Certification Authority" (verified OK)) by archivist.nominum.com (Postfix) with ESMTPS id 6822519005D; Thu, 4 Apr 2013 14:04:02 -0700 (PDT) (envelope-from Ted.Lemon@nominum.com)
Received: from MBX-01.WIN.NOMINUM.COM ([64.89.228.133]) by CAS-01.WIN.NOMINUM.COM ([64.89.228.131]) with mapi id 14.02.0318.004; Thu, 4 Apr 2013 14:04:02 -0700
From: Ted Lemon <Ted.Lemon@nominum.com>
To: Alan DeKok <aland@deployingradius.com>
Thread-Topic: [radext] [dhcwg] draft-ietf-dhc-dhcpv6-radius-opt-10
Thread-Index: AQHOMXU4e/gVjJrlEkiGtY0x3ZKBYpjG/i2AgAACboCAAAGvgA==
Date: Thu, 04 Apr 2013 21:04:01 +0000
Message-ID: <8D23D4052ABE7A4490E77B1A012B630775132374@mbx-01.win.nominum.com>
References: <B51C71CC-654D-43F3-A50A-321C171CD562@gmail.com> <515D7B4D.7090201@deployingradius.com> <515db052.24fa440a.4c16.ffff93c2@mx.google.com> <515DBD38.2020607@deployingradius.com> <8D23D4052ABE7A4490E77B1A012B630775131DB4@mbx-01.win.nominum.com> <515DE629.6070706@deployingradius.com> <8D23D4052ABE7A4490E77B1A012B630775132294@mbx-01.win.nominum.com> <515DE957.1060202@deployingradius.com>
In-Reply-To: <515DE957.1060202@deployingradius.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.1.10]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <F4ABB11C71F3494387658EC854BA5809@nominum.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "<radext@ietf.org>" <radext@ietf.org>, Leaf Yeh <leaf.yeh.sdo@gmail.com>, dhcwg <dhcwg@ietf.org>
Subject: Re: [radext] [dhcwg] draft-ietf-dhc-dhcpv6-radius-opt-10
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2013 21:04:03 -0000

On Apr 4, 2013, at 4:57 PM, Alan DeKok <aland@deployingradius.com> wrote:
>  Positive statements are usually clearer to understand.

Yes, and when I read your statement, I understood it to mean the exact opposite of what you intended.   Easier to understand doesn't help if the statement is ambiguous.

>  The intention is for the option to carry RADIUS attributes.  Making
> that a requirement rather than a suggestion is a good idea.

This isn't what the text says.   It says that the option must only carry a subset of RADIUS attributes; those listed in a special registry.

If you don't like the double negative, here's a precise way to say it that doesn't contain a double negative:

	This option MUST NOT carry any RADIUS attribute unless it is listed in the
	IANA Registry of 'RADIUS attributes permitted in DHCPv6 RADIUS option'.

But what the text that means what you said in the second quote above would read like this:

	This option MUST NOT carry any RADIUS attribute unless it is listed in the
	IANA Registry Radius Types registry in the section titled 'Radius Attribute Types'.

v2.35.0 | Report a Bug | By Email | System Status