IETF Logo Mail Archive

[secdir] secdir review of draft-ietf-dnsop-as112-ops-06

"Scott G. Kelly" <scott@hyperthought.com> Fri, 22 April 2011 18:56 UTC

Return-Path: <scott@hyperthought.com>
X-Original-To: secdir@ietfc.amsl.com
Delivered-To: secdir@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 05C00E079F for <secdir@ietfc.amsl.com>; Fri, 22 Apr 2011 11:56:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.83
X-Spam-Level:
X-Spam-Status: No, score=-3.83 tagged_above=-999 required=5 tests=[AWL=-0.231, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LLLyDUXZpW95 for <secdir@ietfc.amsl.com>; Fri, 22 Apr 2011 11:56:05 -0700 (PDT)
Received: from smtp192.iad.emailsrvr.com (smtp192.iad.emailsrvr.com [207.97.245.192]) by ietfc.amsl.com (Postfix) with ESMTP id 84296E0757 for <secdir@ietf.org>; Fri, 22 Apr 2011 11:56:05 -0700 (PDT)
Received: from localhost (localhost.localdomain [127.0.0.1]) by smtp59.relay.iad1a.emailsrvr.com (SMTP Server) with ESMTP id F40293F03F3; Fri, 22 Apr 2011 14:56:04 -0400 (EDT)
X-Virus-Scanned: OK
Received: from dynamic10.wm-web.iad.mlsrvr.com (dynamic10.wm-web.iad1a.rsapps.net [192.168.2.217]) by smtp59.relay.iad1a.emailsrvr.com (SMTP Server) with ESMTP id B61653F038C; Fri, 22 Apr 2011 14:56:04 -0400 (EDT)
Received: from hyperthought.com (localhost [127.0.0.1]) by dynamic10.wm-web.iad.mlsrvr.com (Postfix) with ESMTP id 9CE5847880A3; Fri, 22 Apr 2011 14:56:04 -0400 (EDT)
Received: by apps.rackspace.com (Authenticated sender: scott@hyperthought.com, from: scott@hyperthought.com) with HTTP; Fri, 22 Apr 2011 11:56:04 -0700 (PDT)
Date: Fri, 22 Apr 2011 11:56:04 -0700
From: "Scott G. Kelly" <scott@hyperthought.com>
To: "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, draft-ietf-dnsop-as112-ops.all@tools.ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Importance: Normal
X-Priority: 3 (Normal)
X-Type: plain
Message-ID: <1303498564.639322965@apps.rackspace.com>
X-Mailer: webmail7.0
Subject: [secdir] secdir review of draft-ietf-dnsop-as112-ops-06
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Apr 2011 18:56:06 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

This document is intended for Informational status. It describes operational considerations for AS112 nameservers, whose purpose in life is to provide a distributed sink for reverse DNS queries corresponding to private-use IP addresses (e.g. RFC 1918 addresses). 

The security considerations section seems well thought out, and I see no security issues with this document. 

--Scott

v2.14.0 | Report a Bug | By Email