Re: [secdir] secdir review of draft-ietf-ospf-ospfv3-mib.txt
Acee Lindem <acee@redback.com> Mon, 15 June 2009 23:41 UTC
Return-Path: <prvs=41033d221=acee@redback.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C1B423A6967; Mon, 15 Jun 2009 16:41:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.242
X-Spam-Level:
X-Spam-Status: No, score=-2.242 tagged_above=-999 required=5 tests=[AWL=-0.243, BAYES_00=-2.599, J_CHICKENPOX_46=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cs2EUJC09EsX; Mon, 15 Jun 2009 16:41:17 -0700 (PDT)
Received: from mgate.redback.com (mgate.redback.com [155.53.3.41]) by core3.amsl.com (Postfix) with ESMTP id 006EF3A69D0; Mon, 15 Jun 2009 16:41:16 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.42,224,1243839600"; d="scan'208";a="2471990"
Received: from prattle.redback.com ([155.53.12.9]) by mgate.redback.com with ESMTP; 15 Jun 2009 16:41:10 -0700
Received: from localhost (localhost [127.0.0.1]) by prattle.redback.com (Postfix) with ESMTP id A2AE882977C; Mon, 15 Jun 2009 16:41:10 -0700 (PDT)
Received: from prattle.redback.com ([127.0.0.1]) by localhost (prattle [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 27692-05; Mon, 15 Jun 2009 16:41:10 -0700 (PDT)
Received: from [IPv6???1] (svilogin-1.sj.us.am.ericsson.se [155.53.154.39]) by prattle.redback.com (Postfix) with ESMTP id CB44B829779; Mon, 15 Jun 2009 16:41:08 -0700 (PDT)
In-Reply-To: <20090610162141.GB7309@elstar.local>
References: <20090610133954.GC6346@elstar.local> <72DEC793-5666-4441-BFD7-05F03956E065@redback.com> <20090610162141.GB7309@elstar.local>
Mime-Version: 1.0 (Apple Message framework v753.1)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <471300CE-CFA8-4A9D-A155-89EBE8A47E08@redback.com>
Content-Transfer-Encoding: 7bit
From: Acee Lindem <acee@redback.com>
Date: Mon, 15 Jun 2009 19:41:07 -0400
To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
X-Mailer: Apple Mail (2.753.1)
Cc: "ospf-chairs@tools.ietf.org" <ospf-chairs@tools.ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "vishwas@ipinfusion.com" <vishwas@ipinfusion.com>, "djoyal@nortel.com" <djoyal@nortel.com>
Subject: Re: [secdir] secdir review of draft-ietf-ospf-ospfv3-mib.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Jun 2009 23:41:18 -0000
Juergen, I think what I'll ask the authors to do is talk about the risks in general terms for read=create and read-only variables. We're NOT going have a separate set of security considerations per variable. That would be the type of work that was carried out in the now- defunct RPSEC WG. Thanks, Acee On Jun 10, 2009, at 12:21 PM, Juergen Schoenwaelder wrote: > On Wed, Jun 10, 2009 at 05:06:30PM +0200, Acee Lindem wrote: >> Juergen, >> >> You refer to an an attached boiler plate for MIB security >> considerations but I don't see any attachments. > > Sorry, I am trying again to attach the attachment. But this > boilerplate is really just an extended version of the boilerplate > posted on the OPS web site. Lines beginning with # are comment > lines. > >> In the future, I'd hope the secdir could register their comments >> earlier in the process. We have taken this document all the way >> through the IESG and MIB doctors reviews and are not one day away >> from the end of the IETF last call. > > I understand your feelings. But on the other hand, the requested > changes do not affect in any way how the MIB module works - it is all > about properly writing up the security considerations - so this is > mainly some additional editing work. > > /js > > -- > Juergen Schoenwaelder Jacobs University Bremen gGmbH > Phone: +49 421 200 3587 Campus Ring 1, 28759 Bremen, Germany > Fax: +49 421 200 3103 <http://www.jacobs-university.de/ > ><OSPFV3-MIB-boilerplate.txt>
- [secdir] secdir review of draft-ietf-ospf-ospfv3-… Juergen Schoenwaelder
- Re: [secdir] secdir review of draft-ietf-ospf-osp… Acee Lindem
- Re: [secdir] secdir review of draft-ietf-ospf-osp… Juergen Schoenwaelder
- Re: [secdir] secdir review of draft-ietf-ospf-osp… Acee Lindem