IETF Logo Mail Archive

[secdir] Secdir telechat review of draft-ietf-6man-zone-ui-07

Tero Kivinen via Datatracker <noreply@ietf.org> Thu, 13 February 2025 12:03 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from mail.ietf.org (ietfa.amsl.com [50.223.129.194]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPSA id 43DF0C180B54; Thu, 13 Feb 2025 04:03:08 -0800 (PST)
Received: from [10.244.8.212] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id DD228C17A743; Thu, 13 Feb 2025 04:03:07 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Tero Kivinen via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.35.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <173944818754.943998.3125574296396836553@dt-datatracker-75c44cbbdf-pxnd6>
Date: Thu, 13 Feb 2025 04:03:07 -0800
Message-ID-Hash: BRD3SCZOKECFARMKSU4PJGDPSUMKHMTQ
X-Message-ID-Hash: BRD3SCZOKECFARMKSU4PJGDPSUMKHMTQ
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-secdir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-6man-zone-ui.all@ietf.org, ipv6@ietf.org, last-call@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: Tero Kivinen <kivinen@iki.fi>
Subject: [secdir] Secdir telechat review of draft-ietf-6man-zone-ui-07
List-Id: Security Area Directorate <secdir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/XWLvHOztPfwRFUOIQdKoavAa10I>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Owner: <mailto:secdir-owner@ietf.org>
List-Post: <mailto:secdir@ietf.org>
List-Subscribe: <mailto:secdir-join@ietf.org>
List-Unsubscribe: <mailto:secdir-leave@ietf.org>

Reviewer: Tero Kivinen
Review result: Has Issues

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors.  Document editors and WG chairs should treat
these comments just like any other last call comments.

This document specifies how the zone identifiers should be used in 
textual format, but leaves the use in web browsers out of scope. 
There is another (now expired) document that explains how to use
zone identifiers in uri context. I think the term used:

   Because of this, the recommendations and normative statements in this
   document do not apply to web browsers.

is misleading as lots of configuration happens in the web browsers, but
not in the context of uri. I.e., I would assume this document to apply 
when you configure a network switch over https, and enter zone identifiers
in the web page form. 

Also this document uses IPv4 addresses which are not from the block 
reserved for examples. 

Security considerations do list typical issues but one of the issues
with zone identifiers is that the set of characters it can use is 
not defined, thus web-form, etc might have difficulties to remove 
unsafe characters. For example entering zone identifiers of 
"fe80::1%`echo string > /etc/config`" might allow users to cause
unauthorized changes to the system without proper authentication.

On the other hand just automatically limiting zone identifiers
to ascii letters and numbers does not work, as they may contain
some special characters like "." or "-".

v2.46.0 | Report a Bug | By Email | System Status