Re: [secdir] secdir review of draft-ietf-lisp-mib
Warren Kumari <warren@kumari.net> Thu, 20 June 2013 22:50 UTC
Return-Path: <warren@kumari.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC97B21E80A9; Thu, 20 Jun 2013 15:50:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.337
X-Spam-Level:
X-Spam-Status: No, score=-102.337 tagged_above=-999 required=5 tests=[AWL=0.262, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ob9GO9++6HFO; Thu, 20 Jun 2013 15:50:29 -0700 (PDT)
Received: from vimes.kumari.net (smtp1.kumari.net [204.194.22.1]) by ietfa.amsl.com (Postfix) with ESMTP id 63B5C21E8097; Thu, 20 Jun 2013 15:50:29 -0700 (PDT)
Received: from [192.168.1.153] (unknown [66.84.81.90]) by vimes.kumari.net (Postfix) with ESMTPSA id BA6791B40088; Thu, 20 Jun 2013 18:50:27 -0400 (EDT)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <090501ce6e01$4779cb70$d66d6250$@olddog.co.uk>
Date: Thu, 20 Jun 2013 18:50:26 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <9FECF25C-649B-4DD6-A99E-F15532AC5435@kumari.net>
References: <090501ce6e01$4779cb70$d66d6250$@olddog.co.uk>
To: adrian@olddog.co.uk
X-Mailer: Apple Mail (2.1508)
Cc: iesg@ietf.org, draft-ietf-lisp-mib.all@tools.ietf.org, secdir@ietf.org
Subject: Re: [secdir] secdir review of draft-ietf-lisp-mib
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jun 2013 22:50:35 -0000
On Jun 20, 2013, at 5:58 PM, "Adrian Farrel" <adrian@olddog.co.uk> wrote: > although... > > lispMIBTuningParametersGroup OBJECT-GROUP > OBJECTS { lispFeaturesMapCacheLimit, > lispFeaturesEtrMapCacheTtl > } > STATUS current > DESCRIPTION > "A collection of writeable objects used to > configure LISP behavior and to tune performance." > ::= { lispGroups 10 } > > ...might lead one to think that something here is writeable. Yup, which I why I mentioned it… W > > Adrian > > >> -----Original Message----- >> From: iesg-bounces@ietf.org [mailto:iesg-bounces@ietf.org] On Behalf Of >> Warren Kumari >> Sent: 20 June 2013 19:26 >> To: iesg@ietf.org; secdir@ietf.org; draft-ietf-lisp-mib.all@tools.ietf.org >> Cc: Warren Kumari >> Subject: secdir review of draft-ietf-lisp-mib >> >> Be ye not afraid.. >> >> I have reviewed this document as part of the security directorate's >> ongoing effort to review all IETF documents being processed by the >> IESG. These comments were written primarily for the benefit of the >> security area directors. Document editors and WG chairs should treat >> these comments just like any other last call comments. >> >> This draft defines a MIB for monitoring LISP devices. >> This set off the standard "Nooooo. SNMP Write. Noooo.." alarm bells, but >> then I skipped down to the Security Considerations section and saw that > authors >> had anticipated my shrieks of despair and that the draft says that there are > no >> read-write / read-create objects. >> >> The Security Considerations section seems well written and complete. It makes > a >> suggestion that SNMPv3, with crypto goodness, be used to access this MIB. >> It also claims that there is no exposed objects in the MIB that are considered >> sensitive. I don't LISP, and so don't know what all might be considered > sensitive, >> but from reading most of the descriptions, and applying some common-sense >> the claim seems reasonable. >> >> ----------- >> >> Two questions / nits: >> 1: The DESCRIPTION for 'lispMIBTuningParametersGroup' says: "A collection of >> writeable objects used to." but these seem Read-only. It is possible I >> misunderstand the description. >> >> 2: The Security Considerations section points out that SNMP prior to V3 > doesn't >> have adequate security, and that there is no control who can GET/**SET** >> things (emphasis mine). I suspect that this was lifted verbatim from e.g >> http://tools.ietf.org/html/rfc5834. >> >> As there is no set / write in this MIB I think that removing the mention of > setting >> things would be clearer. >> s/to access and GET/SET (read/change/create/delete) the objects/to access the >> objects/ >> >> >> Apologies for how late this review is. I was filtering the SecDir assignments > into an >> incorrect folder and so missed it completely. >> >> W >> >> >> >> >> -- >> Some people are like Slinkies......Not really good for anything but they still > bring a >> smile to your face when you push them down the stairs. >> > > -- Life is a concentration camp. You're stuck here and there's no way out and you can only rage impotently against your persecutors. -- Woody Allen
- [secdir] secdir review of draft-ietf-lisp-mib Warren Kumari
- Re: [secdir] secdir review of draft-ietf-lisp-mib Adrian Farrel
- Re: [secdir] secdir review of draft-ietf-lisp-mib Warren Kumari
- Re: [secdir] secdir review of draft-ietf-lisp-mib Gregg Schudel (gschudel)
- Re: [secdir] secdir review of draft-ietf-lisp-mib Uri Blumenthal
- Re: [secdir] secdir review of draft-ietf-lisp-mib Adrian Farrel