Re: [rtcweb] Please require user consent for data channels
Roman Shpount <roman@telurix.com> Mon, 20 July 2015 14:50 UTC
Return-Path: <roman@telurix.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B05C51A896A for <rtcweb@ietfa.amsl.com>; Mon, 20 Jul 2015 07:50:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lxVCAkpV8x3n for <rtcweb@ietfa.amsl.com>; Mon, 20 Jul 2015 07:50:03 -0700 (PDT)
Received: from mail-ig0-f182.google.com (mail-ig0-f182.google.com [209.85.213.182]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 073691A88A7 for <rtcweb@ietf.org>; Mon, 20 Jul 2015 07:50:03 -0700 (PDT)
Received: by igbpg9 with SMTP id pg9so83173478igb.0 for <rtcweb@ietf.org>; Mon, 20 Jul 2015 07:50:02 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=gZz9KRmimMTraUaXSNLywfIoQx0vW8ui/eUWTGGW6dk=; b=BxuL8y9dnaXqsRz+pJ4ETN4wj3JQSJbTqVQNXoUa9AJhAAed75Axj6P7gOJCAL+UR3 QYH5uU0UbDDp8AGvWkxBnwcMJ8UVW89egJxlf/68/bt+UmKPNMJjsAmyfspHZhYNIRcy ut8Zv2PKzuiu9an1b+TDn/i6HPabCaFEx+8jkyx9LOwecjGHoZX7i6EKaoxSSnqkaTf9 dOcPHv3rjiL+XPC/6ExFN4gUrAJlc6Ii6zHWNLFo4ENjTDYdAYUxanm4z5Rhg1kWpnRq yZVDMva9XAwZi1MyLg7K4/78M/4ge3xXISJExgJrHw3+DtZl2enJMS6IrotyB4LcyFqy qsiQ==
X-Gm-Message-State: ALoCoQnHGb6JgpEdNe3t7Ltgm5t7UVgFtocCuP6mCL9ReBU8UMgcY5saRFCbd0Ckz7lLIFGTH3VO
X-Received: by 10.107.33.65 with SMTP id h62mr35741323ioh.11.1437403802373; Mon, 20 Jul 2015 07:50:02 -0700 (PDT)
Received: from mail-ig0-f178.google.com (mail-ig0-f178.google.com. [209.85.213.178]) by smtp.gmail.com with ESMTPSA id 76sm13840927iom.12.2015.07.20.07.50.00 for <rtcweb@ietf.org> (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 20 Jul 2015 07:50:01 -0700 (PDT)
Received: by igbij6 with SMTP id ij6so84011088igb.1 for <rtcweb@ietf.org>; Mon, 20 Jul 2015 07:50:00 -0700 (PDT)
MIME-Version: 1.0
X-Received: by 10.50.142.69 with SMTP id ru5mr15872025igb.61.1437403800151; Mon, 20 Jul 2015 07:50:00 -0700 (PDT)
Received: by 10.36.89.70 with HTTP; Mon, 20 Jul 2015 07:49:59 -0700 (PDT)
In-Reply-To: <55AB4FEC.7050805@alvestrand.no>
References: <CA+65OspMD_PVjk0BXh7t4LtjmFDcDatoeNjFQOO_OVtC-Br+OA@mail.gmail.com> <CAOJ7v-3t9BQabR2e4EHs4G0Sec4sU9DFC2aiSXXYrat+an+RYg@mail.gmail.com> <55A96DA3.1040907@gmail.com> <CAOJ7v-1ui7349NzK6NZNRHPbnHWZajctk4cDgMKqRZSv47EYdA@mail.gmail.com> <55A9860D.8030903@gmail.com> <CAOJ7v-3LGd32rnpFVW_U0s3+iVaJXsL4vt_YAo=cyp6YyOArdw@mail.gmail.com> <CALiegfmiS18Jux-kCgOhTKKiyGtMertj6xCegpFrox5NOf9EJg@mail.gmail.com> <CABkgnnW0Tmjqz823vKiF84_u6HasBJC7ERMYCO2HL_NPj5saTA@mail.gmail.com> <CALiegfkpbLy1QXxr-RRF0oOpVv1sWsFeab=vvC4iT4DnPtjKQw@mail.gmail.com> <CABkgnnVWcuhX2NjZgx87L+Uo6df6rEBWW73cxbaX3mu_VfHmCA@mail.gmail.com> <CALiegfkQWAn-jMrjhcDPA3rtowOPVk-S8z3c-jvjpNmjtf=3hA@mail.gmail.com> <CABkgnnWERM4oxozNCSvRf1o0Wm-d9Bjw=9B+xh_NJ+h6GfBJ6Q@mail.gmail.com> <CAD5OKxt-DZCGFECv2UYH8g0fD6EAk39cdpWD-CsN_ED6L4hfKg@mail.gmail.com> <CALiegf=zM54gNjgj65VYV5H3tS-iV5Kg0PrBeF7svYRYZ-JLPw@mail.gmail.com> <55AABE28.8070105@jive.com> <913383AAA69FF945B8F946018B75898A47894E34@xmb-rcd-x10.cisco.com> <55AB4FEC.7050805@alvestrand.no>
Date: Mon, 20 Jul 2015 10:49:59 -0400
Message-ID: <CAD5OKxv95+x3U63mLEi_vbWJwXOfY6qpdGHwns7_naZj1XfBTw@mail.gmail.com>
From: Roman Shpount <roman@telurix.com>
To: Harald Alvestrand <harald@alvestrand.no>
Content-Type: multipart/alternative; boundary="001a11c3b908e8380a051b4fa6a6"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/hSb1m1hcp0lMvdi3Wk173obatzE>
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Please require user consent for data channels
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Jul 2015 14:50:04 -0000
On Sun, Jul 19, 2015 at 3:21 AM, Harald Alvestrand <harald@alvestrand.no> wrote: > Solutions we engineer MUST work in the current Internet. > I agree completely. > +1 to Simon - the way systems are designed, implemented and deployed > *now*, there may be multiple interfaces with multiple default addresses, > and there's nothing intrinsically illegal, immoral or fattening about an > application accessing them. > If a local system administrator set a lower metric to a particular default (or any other route) vs all the other routes to a certain destination, this route should be used to reach this destination. This is the normal behavior for all other network communications from the browser (HTTP. WebSockets, or even FTP or gopher). With ICE, browsers depart from this model. I understand that this can enable browsers to set up a WebRTC media connection where it would not be able to do so otherwise. On other hand using secondary routes can produce some unexpected results, such as exposing reflexive addresses on secondary interfaces or sending data over LTE network when WiFi is available. I think using secondary routes should only be enabled after user consent or if an appropriate browser setting is enabled. In wast majority of cases, primary default route is sufficient to set up the WebRTC connection. My assumption is that using secondary default routes only improves the chances of connection in extremely small number of cases. Based on the systems I have worked with, we are talking about less then 1/10 of the percent of end users. Regards, _____________ Roman Shpount
- [rtcweb] Please require user consent for data cha… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Matthew Kaufman
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Lorenzo Miniero
- Re: [rtcweb] Please require user consent for data… Michael Tuexen
- Re: [rtcweb] Please require user consent for data… tim panton
- Re: [rtcweb] Please require user consent for data… Bernard Aboba
- Re: [rtcweb] Please require user consent for data… Matthew Kaufman
- Re: [rtcweb] Please require user consent for data… Timothy B. Terriberry
- Re: [rtcweb] Please require user consent for data… Victor Pascual Avila
- Re: [rtcweb] Please require user consent for data… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Eric Rescorla
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Stephen Farrell
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Martin Thomson
- Re: [rtcweb] Please require user consent for data… Martin Thomson
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Justin Uberti
- Re: [rtcweb] Please require user consent for data… Martin Thomson
- Re: [rtcweb] Please require user consent for data… Harald Alvestrand
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Roman Shpount
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Tirumaleswar Reddy (tireddy)
- Re: [rtcweb] Please require user consent for data… Harald Alvestrand
- Re: [rtcweb] Please require user consent for data… Sergio Garcia Murillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Tim Panton
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Tim Panton
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Tim Panton
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Daniel Roesler
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Simon Perreault
- Re: [rtcweb] Please require user consent for data… Roman Shpount
- Re: [rtcweb] Please require user consent for data… Jonathan Lennox
- Re: [rtcweb] Please require user consent for data… Roman Shpount
- Re: [rtcweb] Please require user consent for data… Roman Shpount
- Re: [rtcweb] Please require user consent for data… Iñaki Baz Castillo
- Re: [rtcweb] Please require user consent for data… Tim Panton
- Re: [rtcweb] Please require user consent for data… Ted Hardie
- Re: [rtcweb] Please require user consent for data… Roman Shpount
- Re: [rtcweb] Please require user consent for data… Ted Hardie
- Re: [rtcweb] Please require user consent for data… Randell Jesup
- Re: [rtcweb] Please require user consent for data… Roman Shpount