IETF Logo Mail Archive

Re: [rtcweb] URI schemes for TURN and STUN

"Martin J. Dürst" <duerst@it.aoyama.ac.jp> Mon, 31 October 2011 03:27 UTC

Return-Path: <duerst@it.aoyama.ac.jp>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F7EA11E80B1 for <rtcweb@ietfa.amsl.com>; Sun, 30 Oct 2011 20:27:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -99.43
X-Spam-Level:
X-Spam-Status: No, score=-99.43 tagged_above=-999 required=5 tests=[AWL=0.360, BAYES_00=-2.599, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, MIME_8BIT_HEADER=0.3, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eg9IQ+WU5ySF for <rtcweb@ietfa.amsl.com>; Sun, 30 Oct 2011 20:27:16 -0700 (PDT)
Received: from scintmta01.scbb.aoyama.ac.jp (scintmta01.scbb.aoyama.ac.jp [133.2.253.33]) by ietfa.amsl.com (Postfix) with ESMTP id 29AFE11E80AF for <rtcweb@ietf.org>; Sun, 30 Oct 2011 20:27:16 -0700 (PDT)
Received: from scmse01.scbb.aoyama.ac.jp ([133.2.253.231]) by scintmta01.scbb.aoyama.ac.jp (secret/secret) with SMTP id p9V3R25V023465 for <rtcweb@ietf.org>; Mon, 31 Oct 2011 12:27:02 +0900
Received: from (unknown [133.2.206.133]) by scmse01.scbb.aoyama.ac.jp with smtp id 7395_16c4_33018c7a_0370_11e1_8351_001d096c566a; Mon, 31 Oct 2011 12:27:02 +0900
Received: from [IPv6:::1] ([133.2.210.1]:50548) by itmail.it.aoyama.ac.jp with [XMail 1.22 ESMTP Server] id <S1565EB0> for <rtcweb@ietf.org> from <duerst@it.aoyama.ac.jp>; Mon, 31 Oct 2011 12:27:02 +0900
Message-ID: <4EAE157F.5020901@it.aoyama.ac.jp>
Date: Mon, 31 Oct 2011 12:26:55 +0900
From: "\"Martin J. Dürst\"" <duerst@it.aoyama.ac.jp>
Organization: Aoyama Gakuin University
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100722 Eudora/3.0.4
MIME-Version: 1.0
To: Harald Alvestrand <harald@alvestrand.no>
References: <4EAC6BF4.2000604@alvestrand.no> <CALiegf=f4kFzyDLWK+Y5vbuCEJFXX590+VuZ4bbnHZnvX0CoBA@mail.gmail.com> <4EAC8AE0.3020307@acm.org> <4EACD558.1050003@alvestrand.no>
In-Reply-To: <4EACD558.1050003@alvestrand.no>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Cc: Keith Moore <moore@cs.utk.edu>, Ned Freed <ned.freed@mrochek.com>, Behave WG <behave@ietf.org>, "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] URI schemes for TURN and STUN
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Oct 2011 03:27:17 -0000

For the http vs. https case, there is a very good answer from Roy 
Fielding at
http://lists.w3.org/Archives/Public/www-tag/2006Mar/0040.html

In essence, not distinguishing the two schemes would mean either 
additional roundtrips (assuming http is the more frequent one) or 
exposition of data on the network that was supposed to be private.

Regards,    Martin.

On 2011/10/30 13:40, Harald Alvestrand wrote:
> On 10/29/2011 04:23 PM, Marc Petit-Huguenin wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> On 10/29/2011 03:36 PM, Iñaki Baz Castillo wrote:
>>> 2011/10/29 Harald Alvestrand<harald@alvestrand.no>:
>>>> - I do not think it's appropriate to use "turn" and "turns" for
>>>> indicating
>>>> transport. Polluting the URI namespace with more configuration
>>>> parameters in
>>>> the form of trailing "s" is a Bad Thing.
>>> But there should be some way to indicate that a TURN server listens in
>>> TLS, right?
>>>
>> We should continue this discussion in BEHAVE, but I would like to ask
>> the OP to
>> send a pointer on the RFC or discussion that says that using a
>> trailing "s" to
>> indicate security is a bad thing.
> I'll have to forward this question to the apps ADs of a few years ago
> about whether there's documentation for it. It does not seem to have
> been captured in an RFC that I can find; discussion was in the
> ~2000-2005 timeframe.
>
> The short version, from memory: Doing "s" locks you into one and exactly
> one security scheme, and prevents you from saying anything about the
> requisite parameters for that scheme, while using AUTH parameters such
> as POP or in-band negotiation such as IMAP are much more flexible
> approaches.
>
>
>> Thanks.
>>
>> - -- Marc Petit-Huguenin
>> Personal email: marc@petit-huguenin.org
>> Professional email: petithug@acm.org
>> Blog: http://blog.marc.petit-huguenin.org
>> -----BEGIN PGP SIGNATURE-----
>> Version: GnuPG v1.4.11 (GNU/Linux)
>>
>> iEYEARECAAYFAk6sit4ACgkQ9RoMZyVa61dhpgCfZv+XuDhAljo3N0s33zbh6l0E
>> aWAAmwUP2mvcZiY9BLB5BAsjoe6OULMl
>> =yx3i
>> -----END PGP SIGNATURE-----
>>
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email