[Rats] Re: Security considerations of remote attestation (RFC9334)
"Smith, Ned" <ned.smith@intel.com> Fri, 13 December 2024 23:41 UTC
Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3B44C15109A for <rats@ietfa.amsl.com>; Fri, 13 Dec 2024 15:41:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.248
X-Spam-Level:
X-Spam-Status: No, score=-2.248 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ro-BBhmlFflI for <rats@ietfa.amsl.com>; Fri, 13 Dec 2024 15:41:40 -0800 (PST)
Received: from mgamail.intel.com (mgamail.intel.com [198.175.65.9]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8075CC14CE24 for <rats@ietf.org>; Fri, 13 Dec 2024 15:41:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1734133300; x=1765669300; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=jJPGozGx06FYqIf1xP8XemUnZwzSuYLSKX/z5hfR+VY=; b=OgosNPcwkFOgW6kP987kUgdLLM2OYL1ccYHvfhPOD2lp2oerSX2TR+B9 Bu6Co72B1KPc3dANUCr8dt4gBzxYEIFirAWSkNtDm9IVrMN9IP56ejThf FC/snVPDpHiaJubQxXEbUXSccKPqs+kgzR4Mk6eM29O58MdNFlBhADwGL 0a0+FNBRwVj/3ApzjD57NV65KAhD6NPhdgJWHSrwlK00PpLlHrTbdHrl9 JYa1tmK8dq/uDy1TUXxFnfsAHFzcuWwX2HWluzY0dl74cv3hvfkQk871c 1I0Jk+9vSN8YFLFqdlosU8OpuR5N+5n16z4gGzfNERKz6VZfGAtuFp2oE Q==;
X-CSE-ConnectionGUID: BdbOreH0S0K4HColzUtXQw==
X-CSE-MsgGUID: WqbA+qfeT4COPzgMoQp9fg==
X-IronPort-AV: E=McAfee;i="6700,10204,11285"; a="57069692"
X-IronPort-AV: E=Sophos;i="6.12,232,1728975600"; d="scan'208,217";a="57069692"
Received: from orviesa002.jf.intel.com ([10.64.159.142]) by orvoesa101.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 13 Dec 2024 15:41:40 -0800
X-CSE-ConnectionGUID: 2t+K8hxCTQm9DWo8FSnLxQ==
X-CSE-MsgGUID: dyiffE/xT+O1rotjrQ5ZMg==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="6.12,232,1728975600"; d="scan'208,217";a="127471241"
Received: from orsmsx602.amr.corp.intel.com ([10.22.229.15]) by orviesa002.jf.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 13 Dec 2024 15:41:40 -0800
Received: from orsmsx601.amr.corp.intel.com (10.22.229.14) by ORSMSX602.amr.corp.intel.com (10.22.229.15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.44; Fri, 13 Dec 2024 15:41:39 -0800
Received: from orsedg603.ED.cps.intel.com (10.7.248.4) by orsmsx601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.44 via Frontend Transport; Fri, 13 Dec 2024 15:41:39 -0800
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (104.47.56.175) by edgegateway.intel.com (134.134.137.100) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.44; Fri, 13 Dec 2024 15:41:39 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=eWwnBPhY0Ht+aXile9JY21AwDnvGTE1CrWG+O0z/WK01ogXr6UOIhNyxcq16cyk0E733DSolOhuf4UCaC7gYiP4OVrnGlwB0PXzNk3sBaSG53ZSzI1+rpMg5MBJvkcjls6hFmoboGigpI/191REQ+OdZCoDTao6ah4Og69EDbsraMmvRDGO1yzdK4dRaIVi9qhiMkChat2h45+laMq9883U9ZjH3P0J+roAGjFhw2pkpNKPJi4sVE5T8YTKIBIUT348Ss50RAq8JdbFmTQB0jRCIG21TByatR9vWHdgOYXJSlWJJKd3TTVWAO/gjdOc7UKPbsMxgNO2hMnQkYIxOEQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4LdHpttUKNa5GqksYALLRl06x4O8prBU2nP2T2X+lxI=; b=YQN2uXWUGfyPO5PQkO2HNjT74eydR/CPD7QDLZ1X8BNsKjdBR+Aj733QJ1K8hoC19oecjOq3zcrA1gdUc9DJJHX3g3u+raWtTZhCd/XbhmMjbNnLUeoetfnmVEWPNLBchsAHxGCdvvMLs6JuAndwkw+oP6If2wRI6qaBCi+FbISRWJgk6ICTR++EhZbMgOF80Q2VgeHsaZ8JtXFi8guaGsscMarOv59Br1ilhr4hx5eYG0QfsujeJoRjNiFHxlWQSJDYurB3VHb8S66b0t740UJ+8VWZ+F5mTVg8PdTBSSrH9bXZHVy5xQard1l/xgMOTNcv/dqVpEpsdgaBjAHdgg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by CY8PR11MB7845.namprd11.prod.outlook.com (2603:10b6:930:72::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8251.18; Fri, 13 Dec 2024 23:41:10 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7%6]) with mapi id 15.20.8251.015; Fri, 13 Dec 2024 23:41:10 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>, Michael Richardson <mcr+ietf@sandelman.ca>, Thomas Fossati <thomas.fossati@linaro.org>, Henk Birkholz <henk.birkholz@ietf.contact>, junzhang <junzhang1@huawei.com>, Giridhar Mandyam <giridhar.mandyam@gmail.com>, "lgl island-resort.com" <lgl@island-resort.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Re: Security considerations of remote attestation (RFC9334)
Thread-Index: AQHbNH/DYWfSc7u5cEiooLQ1tlKvsrLG8bIAgAAeFQCAAP5NgIAAKOqAgAElFoCAABMygIAABEUAgAHLkYCAABvQAIAAU4CAgACuqgCAAB+FgIAACOqAgAAFOYCAABAJAIAABnYAgAAWDACAAJbbAIAXILGAgAByDeiAACcGeA==
Date: Fri, 13 Dec 2024 23:41:10 +0000
Message-ID: <CO1PR11MB51692C07E2BBB55B6BBF9BA0E5382@CO1PR11MB5169.namprd11.prod.outlook.com>
References: <4ffdd034-05ec-4565-9cad-b40ff82f83fc@tu-dresden.de> <c7808768-35ce-4783-bece-124d8748ec0c@tu-dresden.de> <CAHAF5K1Sh0ruzz3+wUOCyPE1OWC+LWjkf0j5FqJEtCRjBO3xkQ@mail.gmail.com> <6ae884d8-b7a2-4e5d-9f36-a819284f7589@tu-dresden.de> <f356d4cfc944484ba53600177001ba30@huawei.com> <42365842-ea0e-4129-8469-9f8a22ac0c7d@tu-dresden.de> <9006a93d-4fdd-18da-185a-d20606bb3d20@ietf.contact> <196f403d-f95a-4f81-b00e-08aace4976cc@tu-dresden.de> <CA+1=6yfED4vPA=SJE6OLK7Tpva6QBKGvOnbVpOUexT_nv2T+jA@mail.gmail.com> <5073b0a0-e938-4299-936b-0dd644ea3f88@tu-dresden.de> <CA+1=6ydHjEf8cBEu0oaa8pHBn_As2dowwoEtrtRHR1U+=Vhscg@mail.gmail.com> <92b82fe0-34e6-4a35-b265-a29466cda69a@tu-dresden.de> <CA+1=6yffVFhnMxcXo2pwD1xFdWdHKCj60zT2RKgAg=5DyBKDXQ@mail.gmail.com> <01ede5ee-6e98-4855-b351-5c3c0961f8d2@tu-dresden.de> <CA+1=6yfP+RV0MuyKhSw8CkjJh6gX4pG0hreQdYgqb9AZyZ1kvg@mail.gmail.com> <b273e32a-8855-48b8-b16a-839a238537ee@tu-dresden.d e> <22509.1732828924@obiwan.sandelman.ca> <9656e051-450a-43db-a0f9-6cdd323f255f@tu-dresden.de> <CO1PR11MB5169A23D48E5401162D7E20EE5382@CO1PR11MB5169.namprd11.prod.outlook.com>
In-Reply-To: <CO1PR11MB5169A23D48E5401162D7E20EE5382@CO1PR11MB5169.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR11MB5169:EE_|CY8PR11MB7845:EE_
x-ms-office365-filtering-correlation-id: e86ef339-6ab4-4561-e644-08dd1bcf9f67
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|376014|366016|7053199007|38070700018|8096899003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CO1PR11MB5169.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(376014)(366016)(7053199007)(38070700018)(8096899003);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_CO1PR11MB51692C07E2BBB55B6BBF9BA0E5382CO1PR11MB5169namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e86ef339-6ab4-4561-e644-08dd1bcf9f67
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Dec 2024 23:41:10.2815 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ciKkVwTGeU6EPkY6TR1eSUFWCQs7QM/7Axn5C/7zHtfKYjMMlmBVKDHTKa0dbLsyQ2ucA+XygKKMmF6TIBMUUw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY8PR11MB7845
X-OriginatorOrg: intel.com
Message-ID-Hash: HTRDH5RE2XVA6RDQEWECZPHMKUN5MMCB
X-Message-ID-Hash: HTRDH5RE2XVA6RDQEWECZPHMKUN5MMCB
X-MailFrom: ned.smith@intel.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Security considerations of remote attestation (RFC9334)
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/mZkfLqw2DjXmKvRL3sJaqToIrqY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
>Pointing to specific text that is “wong” would be helpful I meant to say “wrong” From: Smith, Ned <ned.smith@intel.com> Date: Friday, December 13, 2024 at 13:23 To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>, Michael Richardson <mcr+ietf@sandelman.ca>, Thomas Fossati <thomas.fossati@linaro.org>, Henk Birkholz <henk.birkholz@ietf.contact>, junzhang <junzhang1@huawei.com>, Giridhar Mandyam <giridhar.mandyam@gmail.com>, lgl island-resort.com <lgl@island-resort.com>, rats@ietf.org <rats@ietf.org> Subject: [Rats] Re: Security considerations of remote attestation (RFC9334) >I believe the following statement in RFC9334 (Sec. 7.4) is wrong. Pointing to specific text that is “wong” would be helpful since there is general consensus that the section as a whole is reasonable. From: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> Date: Friday, December 13, 2024 at 06:34 To: Michael Richardson <mcr+ietf@sandelman.ca>, Thomas Fossati <thomas.fossati@linaro.org>, Henk Birkholz <henk.birkholz@ietf.contact>, junzhang <junzhang1@huawei.com>, Giridhar Mandyam <giridhar.mandyam@gmail.com>, lgl island-resort.com <lgl@island-resort.com>, rats@ietf.org <rats@ietf.org> Subject: [Rats] Re: Security considerations of remote attestation (RFC9334) Hi Michael, On 28.11.24 22:22, Michael Richardson wrote: You can write ten documents, one every 4 months if you like, that *Update* 9334. I don't think that's a very optimal solution. Also, from the reader perspective, reading RFC9334 first and then finding, "oh wait, what I just read in RFC9334 has been updated in these 10 documents." They will be very much as legitimate as 9334. I just don't see a reason to re-open the rest of the document to second-system effect today. The WG could disagree I believe some things can be better fixed in RFC9334bis itself rather than opening a number of new different documents updating RFC9334. For example, I believe the following statement in RFC9334 (Sec. 7.4) is wrong. Would someone disagree? Does WG think I should write a new I-D just to say why this is wrong? > "A conveyance protocol that provides authentication and integrity protection can be used to convey Evidence that is otherwise unprotected (e.g., not signed)." Usama
- [Rats] Security considerations of remote attestat… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Alexander Stein
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Laffey, Tom (HPE Aruba Networks)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar