[secdir] Review of draft-ietf-nfsv4-rfc1831bis-10
"Shawn M. Emery" <Shawn.Emery@Sun.COM> Mon, 08 December 2008 19:02 UTC
Return-Path: <secdir-bounces@ietf.org>
X-Original-To: secdir-archive@ietf.org
Delivered-To: ietfarch-secdir-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F176028C167; Mon, 8 Dec 2008 11:02:18 -0800 (PST)
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C3E6128C155; Mon, 8 Dec 2008 11:02:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.046
X-Spam-Level:
X-Spam-Status: No, score=-6.046 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sZ4Zm5oo1tQ1; Mon, 8 Dec 2008 11:02:17 -0800 (PST)
Received: from brmea-mail-1.sun.com (brmea-mail-1.Sun.COM [192.18.98.31]) by core3.amsl.com (Postfix) with ESMTP id C6C3428C12D; Mon, 8 Dec 2008 11:02:16 -0800 (PST)
Received: from fe-amer-09.sun.com ([192.18.109.79]) by brmea-mail-1.sun.com (8.13.6+Sun/8.12.9) with ESMTP id mB8J2Bcd011507; Mon, 8 Dec 2008 19:02:11 GMT
Received: from conversion-daemon.mail-amer.sun.com by mail-amer.sun.com (Sun Java System Messaging Server 6.2-8.04 (built Feb 28 2007)) id <0KBK00D01MGXJL00@mail-amer.sun.com> (original mail from Shawn.Emery@Sun.COM); Mon, 08 Dec 2008 12:02:11 -0700 (MST)
Received: from shawn-emerys-computer.local ([129.150.36.101]) by mail-amer.sun.com (Sun Java System Messaging Server 6.2-8.04 (built Feb 28 2007)) with ESMTPSA id <0KBK00GVWNJHYI30@mail-amer.sun.com>; Mon, 08 Dec 2008 12:02:05 -0700 (MST)
Date: Mon, 08 Dec 2008 11:57:28 -0700
From: "Shawn M. Emery" <Shawn.Emery@Sun.COM>
To: secdir@ietf.org
Message-id: <493D6E18.7010701@sun.com>
MIME-version: 1.0
User-Agent: Thunderbird 2.0.0.18 (Macintosh/20081105)
Cc: nfsv4-chairs@tools.ietf.org, iesg@ietf.org, draft-ietf-nfsv4-rfc1831bis@tools.ietf.org
Subject: [secdir] Review of draft-ietf-nfsv4-rfc1831bis-10
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: secdir-bounces@ietf.org
Errors-To: secdir-bounces@ietf.org
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft describes clarifications to the the Remote Procedure Call (RPC) Version 2 protocol. The draft does not specify any change of bits over-the-wire, but rather clarifies aspects for IANA registry, implementation, and authentication. The security consideration section does exist and discusses recommendations on which security flavors should be used according to the service in question. I think that this is sufficient for this particular draft and that the informative reference discusses the security implications for the respective security flavors. I'm not suggesting to address this here, not by any means, but verifiers could also be useful in some cases in reply messages that are not accepted by the server. This is useful when preventing a DoS attack on clients. It would be up to the GSS mechanism to determine how to do this if at all possible. Editorial comment(s): s/them in future/them in the future/ s/minimum, the/a minimum, the/ s/in future/in the future/ s/to used on/to be used on/ Shawn. -- _______________________________________________ secdir mailing list secdir@ietf.org https://www.ietf.org/mailman/listinfo/secdir
- [secdir] Review of draft-ietf-nfsv4-rfc1831bis-10 Shawn M. Emery
- Re: [secdir] Review of draft-ietf-nfsv4-rfc1831bi… Robert Thurlow
- [secdir] Review of draft-ietf-mediactrl-mixer-con… Shawn M Emery