IETF Logo Mail Archive

Re: [rtcweb] Please require user consent for data channels

Iñaki Baz Castillo <ibc@aliax.net> Mon, 20 July 2015 13:56 UTC

Return-Path: <ibc@aliax.net>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 428BF1A87BC for <rtcweb@ietfa.amsl.com>; Mon, 20 Jul 2015 06:56:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.677
X-Spam-Level:
X-Spam-Status: No, score=-1.677 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zEA4zVC0XCdR for <rtcweb@ietfa.amsl.com>; Mon, 20 Jul 2015 06:56:30 -0700 (PDT)
Received: from mail-yk0-f171.google.com (mail-yk0-f171.google.com [209.85.160.171]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D0D21A1AAE for <rtcweb@ietf.org>; Mon, 20 Jul 2015 06:56:30 -0700 (PDT)
Received: by ykax123 with SMTP id x123so139377795yka.1 for <rtcweb@ietf.org>; Mon, 20 Jul 2015 06:56:29 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=K276iS7VusmYEDxQ1vYBzYhZ+LXr/kaDUe3MPVFVWro=; b=HyU3QtmH+fEo7gPb0q7+5wIlemoTLD6xIrB1Y5mM/3+zuFiD4NSdA0DXF0hEJMUsyo 7d50x6QgtQurpEf2mCtk9i/12IbsylNuscJpcER5tqTatyzuL8D1xV7zwEstJLcj+oOG nDoEzYo5DPBG5CTZApwPYhiLu2lNRv2L7enIUy78Lk7+YR2EatNOsqr/WL5aeMFjkcBq Y7A34p4BcicvJE+hVrSglGCOXdUYOlErU8TNrJACQpjQzFMW4QmuzPiDdUmeDAKjZ+E7 3CYwOrWikYzaDWx6vwn+LTnyHt0xaz+hl/3zRJYodDQ5vv9ICEbiD6notssBtK4oOjfK kUNA==
X-Gm-Message-State: ALoCoQnPKC2oKDHry6SgucmYfsLaZojbflll+dZKySEYj3v9S7xhBPYiqvTe1punZ5UBp06Tqia0
X-Received: by 10.170.219.4 with SMTP id l4mr20206149ykf.15.1437400589602; Mon, 20 Jul 2015 06:56:29 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.37.215.206 with HTTP; Mon, 20 Jul 2015 06:56:10 -0700 (PDT)
In-Reply-To: <AB6B1C60-7026-4623-9A65-AB3C55B402CD@phonefromhere.com>
References: <CA+65OspMD_PVjk0BXh7t4LtjmFDcDatoeNjFQOO_OVtC-Br+OA@mail.gmail.com> <55A95364.2070806@gmail.com> <CAOJ7v-3t9BQabR2e4EHs4G0Sec4sU9DFC2aiSXXYrat+an+RYg@mail.gmail.com> <55A96DA3.1040907@gmail.com> <CAOJ7v-1ui7349NzK6NZNRHPbnHWZajctk4cDgMKqRZSv47EYdA@mail.gmail.com> <55A9860D.8030903@gmail.com> <CAOJ7v-3LGd32rnpFVW_U0s3+iVaJXsL4vt_YAo=cyp6YyOArdw@mail.gmail.com> <CALiegfmiS18Jux-kCgOhTKKiyGtMertj6xCegpFrox5NOf9EJg@mail.gmail.com> <CABkgnnW0Tmjqz823vKiF84_u6HasBJC7ERMYCO2HL_NPj5saTA@mail.gmail.com> <CALiegfkpbLy1QXxr-RRF0oOpVv1sWsFeab=vvC4iT4DnPtjKQw@mail.gmail.com> <CABkgnnVWcuhX2NjZgx87L+Uo6df6rEBWW73cxbaX3mu_VfHmCA@mail.gmail.com> <CALiegfkQWAn-jMrjhcDPA3rtowOPVk-S8z3c-jvjpNmjtf=3hA@mail.gmail.com> <CABkgnnWERM4oxozNCSvRf1o0Wm-d9Bjw=9B+xh_NJ+h6GfBJ6Q@mail.gmail.com> <7F818FAC-5559-4074-B1FC-EB9516A98FB7@phonefromhere.com> <13F9D9AE-7B6B-40DE-BDD7-DDED28382EAB@phonefromhere.com> <55ACF718.3010000@jive.com> <AB6B1C60-7026-4623-9A65-AB3C55B402CD@phonefromhere.com>
From: Iñaki Baz Castillo <ibc@aliax.net>
Date: Mon, 20 Jul 2015 15:56:10 +0200
Message-ID: <CALiegfkDZoS=AVC4T_K8m8bSGHN_h-6bWqRALyYYVT5m6GJOqw@mail.gmail.com>
To: Tim Panton <tim@phonefromhere.com>
Content-Type: multipart/alternative; boundary="001a113a346c8b42e6051b4ee716"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/UVreKoTpgColkRDXGbfl3Dxnwac>
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Please require user consent for data channels
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Jul 2015 13:56:31 -0000

2015-07-20 15:45 GMT+02:00 Tim Panton <tim@phonefromhere.com>:

> And yet that’s what I read Martin to say :
> "> The point is that you don't even choose the interface. The OS will do
> for you.
> The OS can - and frequently does - get that wrong. The default route can
> fail when another might succeed."
>
> I read that as 'another interface’ - but if he means  ‘another route’ then
> I’m happier - I think.
> Can @justin or @martin confirm what the browsers currently do ?
>

I can confirm (OSX) that during ICE gathering STUN requests to the STUN
server are not sent over interfaces not belonging to any network route that
can reach the STUN/TURN server. This is, network routes are "respected".
The issue is that all the existing routes capables of reaching the STUN
server are tested (instead of the first one).

Note that we should avoid the term "default route" here as it stands for
0.0.0.0. It may happen that the webrtc app uses a private STUN server which
is just reachable via a VPN interface (and its specific route to reach the
VPN network in which the STUN server is placed) so in this case the default
route should not be tested because there is a route with higher priority to
reach the server.


-- 
Iñaki Baz Castillo
<ibc@aliax.net>

v2.23.0 | Report a Bug | By Email