Re: [rtcweb] Summary of ICE discussion

Cullen Jennings <fluffy@cisco.com> Tue, 04 October 2011 22:37 UTC

Return-Path: <fluffy@cisco.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34DB721F8467 for <rtcweb@ietfa.amsl.com>; Tue, 4 Oct 2011 15:37:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.041
X-Spam-Level:
X-Spam-Status: No, score=-103.041 tagged_above=-999 required=5 tests=[AWL=-0.442, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6B-2CDko2Ndi for <rtcweb@ietfa.amsl.com>; Tue, 4 Oct 2011 15:37:04 -0700 (PDT)
Received: from mtv-iport-2.cisco.com (mtv-iport-2.cisco.com [173.36.130.13]) by ietfa.amsl.com (Postfix) with ESMTP id D803221F841D for <rtcweb@ietf.org>; Tue, 4 Oct 2011 15:37:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=fluffy@cisco.com; l=555; q=dns/txt; s=iport; t=1317768011; x=1318977611; h=subject:mime-version:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to; bh=6KCqTRfzTQGPJJoZOAtqd9dH6CCzUUlsEvDxjB6478w=; b=Lc1ezyzg62iQQB1Q/JZrarWz3qaGrKg7r2IQGBDH8yDKgXNSY/6pg3aL d16V9q0qjIcuB8mLKED89cfs6P/VfYmICPZwzs3c2gzL1ocGtiBE5YCDt rb7WvgxtRKLWmoysI+MjaDNPPnz4AWnNBBRtjOwD6TfW7K232NZXhb0x1 A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av0EAKiKi06rRDoI/2dsb2JhbABCqAuBBYFTAQEBAQIBEgEnPwULCzAWVwYBNIdbmWoBnWyEF4IrYQSHeItuhSeMOg
X-IronPort-AV: E=Sophos;i="4.68,487,1312156800"; d="scan'208";a="5949465"
Received: from mtv-core-3.cisco.com ([171.68.58.8]) by mtv-iport-2.cisco.com with ESMTP; 04 Oct 2011 22:40:11 +0000
Received: from [192.168.4.100] (sjc-fluffy-8914.cisco.com [10.20.249.165]) by mtv-core-3.cisco.com (8.14.3/8.14.3) with ESMTP id p94MeAeu031950; Tue, 4 Oct 2011 22:40:10 GMT
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset=us-ascii
From: Cullen Jennings <fluffy@cisco.com>
In-Reply-To: <BLU152-W139AA2913C1CFFDB50726193FB0@phx.gbl>
Date: Tue, 4 Oct 2011 16:40:09 -0600
Content-Transfer-Encoding: quoted-printable
Message-Id: <4CEEC8BB-FC3D-4424-A2D6-D5F96E3DDBDE@cisco.com>
References: <4E8B192E.80809@ericsson.com>, <CALiegfmnxO+BrfycOmL=hptBFdcEpsLeBn=zsJTX=ivKBBumWw@mail.gmail.com> <BLU152-W139AA2913C1CFFDB50726193FB0@phx.gbl>
To: Bernard Aboba <bernard_aboba@hotmail.com>, Paul Hoffman <paul.hoffman@vpnc.org>
X-Mailer: Apple Mail (2.1084)
Cc: rtcweb@ietf.org
Subject: Re: [rtcweb] Summary of ICE discussion
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Oct 2011 22:37:06 -0000

On Oct 4, 2011, at 10:28 AM, Bernard Aboba wrote:

>  For example, there exist public STUN servers on the Internet, and 
> RTCWEB should not permit the browser to execute a DoS attack on these servers. 

Note that when STUN was designed, we did some experiments and found that adding passwords to STUN made it easier to DOS the servers even if you did not know the password than just having the STUN server respond with no password. Paul Hoffman (CC'd) might have some interesting stats about operating a public STUN server.