Re: [radext] Ben Campbell's Discuss on draft-ietf-radext-coa-proxy-06: (with DISCUSS and COMMENT)
Benjamin Kaduk <kaduk@mit.edu> Thu, 16 August 2018 02:44 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A3C50130E72; Wed, 15 Aug 2018 19:44:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P1RujPds1s64; Wed, 15 Aug 2018 19:44:08 -0700 (PDT)
Received: from dmz-mailsec-scanner-2.mit.edu (dmz-mailsec-scanner-2.mit.edu [18.9.25.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E855130E82; Wed, 15 Aug 2018 19:44:07 -0700 (PDT)
X-AuditID: 1209190d-1fdff700000016c8-11-5b74e4f6d7c7
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-2.mit.edu (Symantec Messaging Gateway) with SMTP id D0.37.05832.6F4E47B5; Wed, 15 Aug 2018 22:44:06 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id w7G2i4Ch017977; Wed, 15 Aug 2018 22:44:04 -0400
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w7G2hwFY004901 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 15 Aug 2018 22:44:00 -0400
Date: Wed, 15 Aug 2018 21:43:58 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: Alan DeKok <aland@freeradius.org>
Cc: Ben Campbell <ben@nostrum.com>, Winter Stefan <stefan.winter@restena.lu>, radext@ietf.org, The IESG <iesg@ietf.org>, draft-ietf-radext-coa-proxy@ietf.org, radext-chairs@ietf.org
Message-ID: <20180816024358.GC40887@kduck.kaduk.org>
References: <153436290915.3118.1227345371925581329.idtracker@ietfa.amsl.com> <78BEFFD7-2B87-4EC1-A1A3-8BDD7AB97C5F@freeradius.org>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="JSkcQAAxhB1h8DcT"
Content-Disposition: inline
In-Reply-To: <78BEFFD7-2B87-4EC1-A1A3-8BDD7AB97C5F@freeradius.org>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrEKsWRmVeSWpSXmKPExsUixCmqrfvtSUm0Qcd+eYszG6exWMzvPM1u Me/JU1aLGX8mMls87fjCZNHyaiabxbyGRnYHdo9nEyczeixZ8pPJY9bOJywey7t8AliiuGxS UnMyy1KL9O0SuDJW3jUv6NavWHpiBksD4ya1LkYODgkBE4k9W1W7GDk5hAQWM0m8vyTRxcgF ZG9klJi2vIMFwrnKJLF2+wcmkCoWAVWJB3P2s4HYbAIqEg3dl5lBbBGg+LYll9lBGpgFjjNK rPqyBCwhLJAscXJrA1gDL9C2zQufMUFMbWGUOLPiEBNEQlDi5MwnLCA2s0CZxLYHG9hBzmMW kJZY/o8DxOQUcJJYcEcKpEJUQFlib98h9gmMArOQNM9C0jwLoRkirCOxc+sdNgxhbYllC18z Q9i2EuvWvWdZwMi+ilE2JbdKNzcxM6c4NVm3ODkxLy+1SNdILzezRC81pXQTIziKJHl3MP67 63WIUYCDUYmH94FhSbQQa2JZcWXuIUZJDiYlUV796uJoIb6k/JTKjMTijPii0pzU4kOMKkC7 Hm1YfYFRiiUvPy9VSYT31zGgVt6UxMqq1KJ8mDJpDhYlcd57NeHRQgLpiSWp2ampBalFMFkZ Dg4lCd5/j4EaBYtS01Mr0jJzShDSTBychxglOHiAhp8HqeEtLkjMLc5Mh8ifYtTl+PN+6iRm IbALpMR5O0CKBECKMkrz4OaAkqJE9v6aV4ziQC8K8/4HqeIBJlS4Sa+AljABLUkWKQRZUpKI kJJqYGSY8XJ+tJXkJPZtcwVVgGnusKFRz1qry4uEdjx69bpiR+iR3urpizrE0lbf6EwR3rX1 SpOm3qYv8rF/xKbfD/EyffV/zoPmFQ7/Lq8Lr1iy4j0vd5Z2KMuLG790VM/X+en9Tfmur1qn 1VovMeO++KGd6RF/y4Iquy17T35QO91XHGr71PnvEyWW4oxEQy3mouJEAMkVGV5lAwAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/nMM-QiNnGoVCEE53CrZg1CGerhU>
Subject: Re: [radext] Ben Campbell's Discuss on draft-ietf-radext-coa-proxy-06: (with DISCUSS and COMMENT)
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Aug 2018 02:44:10 -0000
On Wed, Aug 15, 2018 at 09:14:26PM -0400, Alan DeKok wrote: > On Aug 15, 2018, at 3:55 PM, Ben Campbell <ben@nostrum.com> wrote: > > (This is a procedural DISCUSS. Hopefully it can be resolved easily, but I do > > think it needs to be resolved prior to publication..) > > > > This draft is standards track, yet it primarily serves to extend RFC 5176. That > > RFC is informational. The shepherd writeup argues that this is okay because it > > seems like 5176 should have been standards track. But the applicability > > statement RFC 5176 explains why it was informational, and the reasons seem > > convincing. Therefore I do not think it is appropriate to publish this draft as > > Standards Track. > > We may choose Informational for this document, because it has a normative dependency on RFC 5176. > > But I don't see how those two last sentences are related. The argument which is convincing for 5176 is not applicable to this document. So conflating the two applicability statements is simply not appropriate. Yes ... but you can't use this document at all without using 5176, and 5176 can't be standards-track as it discusses. This is basically a philosophical question of whether we can require strict compliance for just a part of or an extension to a protocol that itself is not as strictly defined. -Benjamin > i.e. the issues highlighted in Section 1.1 of RFC 5176 do not apply to this document. Any applicability statement here would be *false* if it repeated (or even normatively referenced) the discussion in RFC 5176. > > > I think it would be fine to progress it as Informational (or > > even Experimental) > > If it's Experimental, then any possible subsequent Standards track document would run into the same problem: 5176 is Informational. > > And if we're being realistic... I think we're past the point where we can expect RADIUS Information or Experimental documents to progress to Standards track. I can't for the life of me think of a single RADIUS document which has progressed from Informational or Experimental to Proposed Standard. And, the RADIUS WG is on the verge of shutting down, with no new work envisioned. > > And if 20+ years isn't enough to make RFC 2866 (RADIUS accounting) a Proposed Standard, then I suspect no further progress will be made in the next 20 years. > > > if it included an applicability statement explaining why in > > order to avoid the appearance of a standard masquerading as an Informational > > RFC. > > "This document is Informational because it updates RFC 5176, which is itself Informational. None of the applicability statements in Section 1.1 of RFC 5176 apply to this document." > > > ---------------------------------------------------------------------- > > COMMENT: > > ---------------------------------------------------------------------- > > > > Thanks for a readable and understandable drafts. I have some additional > > comments that do not rise to the level of a DISCUSS > > > > Substantive Comments: > > > > - I support Adam's DISCUSS point concerning the security properties of > > Operator-NAS-Identifier. But I will let that play out in Adam's thread. > > > > §3.1 and §3,3: Do the normative changes to Access-Request and > > Accounting-Request mean that this draft needs to update documents other than > > just RFC 5176? > > The document does not provide for normative changes to Access-Request or Accounting-Request packets. As with other RFCs that define new RADIUS attributes (e.g. 5580), it does not update RFC 2865 or 2866. > > i.e. simply carrying a new attribute is not a normative change to those packets. > > > Editorial Comments: > > > > - The abstract and introduction explain how this draft updates 5176, which is > > good. However, they avoid using the explicit term-of-art "Updates RFC 5176". > > Doing so would help make things more explicit. (The RFC style guide recommends > > doing this at least in the abstract.) > > Fixed. > > > - Please expand PPTP and L2TP on first mention. > > Fixed. > > > §3.1: I suspect some of the normative keywords in this section refer to > > previously existing requirements rather than new requirements. If so, they > > should not be capitalized except in literal quotes. > > The normative keywords do not refer to previously existing requirements. > > > §6: I think it would be helpful to mention the discussion in §4.3 in the > > security considerations. > > Sure. > > > §7: It would be helpful for the IANA considerations to briefly summarize the > > new attributes, so that a reader that started out reading the IANA > > considerations doesn't have to flip back to §3.3 just to find out what they are. > > The latest draft has the updates. IANA has the allocation ready, and it has been reviewed. > > Alan DeKok. >
- [radext] Ben Campbell's Discuss on draft-ietf-rad… Ben Campbell
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Alan DeKok
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Benjamin Kaduk
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Ben Campbell
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Alan DeKok
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Alan DeKok
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Ben Campbell
- Re: [radext] Ben Campbell's Discuss on draft-ietf… Alan DeKok