IETF Logo Mail Archive

Re: [saag] should we revise rfc 3365?

"Tschofenig, Hannes (NSN - FI/Espoo)" <hannes.tschofenig@nsn.com> Thu, 24 May 2012 07:25 UTC

Return-Path: <hannes.tschofenig@nsn.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C8E7721F849A for <saag@ietfa.amsl.com>; Thu, 24 May 2012 00:25:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.299
X-Spam-Level:
X-Spam-Status: No, score=-106.299 tagged_above=-999 required=5 tests=[AWL=-0.300, BAYES_00=-2.599, J_CHICKENPOX_31=0.6, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rpQvL3KAFKOw for <saag@ietfa.amsl.com>; Thu, 24 May 2012 00:25:25 -0700 (PDT)
Received: from demumfd002.nsn-inter.net (demumfd002.nsn-inter.net [93.183.12.31]) by ietfa.amsl.com (Postfix) with ESMTP id CB93421F8484 for <saag@ietf.org>; Thu, 24 May 2012 00:25:24 -0700 (PDT)
Received: from demuprx017.emea.nsn-intra.net ([10.150.129.56]) by demumfd002.nsn-inter.net (8.12.11.20060308/8.12.11) with ESMTP id q4O7PMaN002171 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Thu, 24 May 2012 09:25:22 +0200
Received: from DEMUEXC047.nsn-intra.net ([10.159.32.93]) by demuprx017.emea.nsn-intra.net (8.12.11.20060308/8.12.11) with ESMTP id q4O7PMh9018842; Thu, 24 May 2012 09:25:22 +0200
Received: from FIESEXC035.nsn-intra.net ([10.159.0.25]) by DEMUEXC047.nsn-intra.net with Microsoft SMTPSVC(6.0.3790.4675); Thu, 24 May 2012 09:25:10 +0200
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Thu, 24 May 2012 10:25:09 +0300
Message-ID: <999913AB42CC9341B05A99BBF358718D017BA1BE@FIESEXC035.nsn-intra.net>
In-Reply-To: <201205240339.XAA25498@Sparkle.Rodents-Montreal.ORG>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [saag] should we revise rfc 3365?
Thread-Index: Ac05Xuls++QT4Po0SN+L2aZHZ8xoWAAHz8OA
References: <4FBD6A78.2070204@cs.tcd.ie><201205232351.TAA23415@Sparkle.Rodents-Montreal.ORG><4FBD873D.3090802@isi.edu> <201205240339.XAA25498@Sparkle.Rodents-Montreal.ORG>
From: "Tschofenig, Hannes (NSN - FI/Espoo)" <hannes.tschofenig@nsn.com>
To: ext Mouse <mouse@Rodents-Montreal.ORG>, saag@ietf.org
X-OriginalArrivalTime: 24 May 2012 07:25:10.0540 (UTC) FILETIME=[5A3074C0:01CD397E]
X-purgate-type: clean
X-purgate-Ad: Categorized by eleven eXpurgate (R) http://www.eleven.de
X-purgate: clean
X-purgate: This mail is considered clean (visit http://www.eleven.de for further information)
X-purgate-size: 1970
X-purgate-ID: 151667::1337844323-00005945-D7DAEF0B/0-0/0-0
Subject: Re: [saag] should we revise rfc 3365?
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 May 2012 07:25:25 -0000

Hi, 

I see this argument quite often that we should not impose strong
security requirements on protocols because there may be this use case
where no security is needed. 

I am wondering what protocols you are thinking about that need no
security. 

Ciao
Hannes

> -----Original Message-----
> From: saag-bounces@ietf.org [mailto:saag-bounces@ietf.org] On Behalf
Of
> ext Mouse
> Sent: Thursday, May 24, 2012 6:40 AM
> To: saag@ietf.org
> Subject: Re: [saag] should we revise rfc 3365?
> 
> >> [RFC 3365]
> > To open a can of worms, this would also be a good doc in which to
> > discuss the need for secure ports, and whether (or not) to ever
> > assign meaning to the difference between system and user ports...
> 
> I submit that attempting to make such a distinction is effectively
> meaningless, and has been ever since single-user machines - machines
> owned personally by individuals who are their administrators - became
> even moderately common.  It meant something (though even then not
much)
> in the days of large multi-user machines whose administrators could
> reasonably be treated by the rest of the net as more trusted than the
> bulk of their users.  Those days are long past; between personal
> machines and pwn3d windows boxen, I think it is now pointless.
> 
> To look at it another way, there can be no distinction between system
> and user ports from the point of view of network-observable behaviour,
> since the "system"-vs-"user" distinction, to the extent that it exists
> at all, is entirely private to each host; it is, therefore, pointless
> to try to mandate any such difference.
> 
> /~\ The ASCII				  Mouse
> \ / Ribbon Campaign
>  X  Against HTML		mouse@rodents-montreal.org
> / \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B
> _______________________________________________
> saag mailing list
> saag@ietf.org
> https://www.ietf.org/mailman/listinfo/saag

v2.23.0 | Report a Bug | By Email