Re: [secdir] Secdir review of draft-kucherawy-authres-spf-erratum-01
"Murray S. Kucherawy" <msk@cloudmark.com> Thu, 12 January 2012 17:24 UTC
Return-Path: <msk@cloudmark.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B59E921F85BE; Thu, 12 Jan 2012 09:24:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.579
X-Spam-Level:
X-Spam-Status: No, score=-102.579 tagged_above=-999 required=5 tests=[AWL=0.019, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gd3Miz3S1a3Z; Thu, 12 Jan 2012 09:24:54 -0800 (PST)
Received: from ht1-outbound.cloudmark.com (ht1-outbound.cloudmark.com [72.5.239.25]) by ietfa.amsl.com (Postfix) with ESMTP id 4AD7521F859A; Thu, 12 Jan 2012 09:24:54 -0800 (PST)
Received: from malice.corp.cloudmark.com (172.22.10.71) by EXCH-HTCAS901.corp.cloudmark.com (172.22.10.73) with Microsoft SMTP Server (TLS) id 14.1.355.2; Thu, 12 Jan 2012 09:24:46 -0800
Received: from EXCH-C2.corp.cloudmark.com ([172.22.1.74]) by malice.corp.cloudmark.com ([172.22.10.71]) with mapi; Thu, 12 Jan 2012 09:24:53 -0800
From: "Murray S. Kucherawy" <msk@cloudmark.com>
To: Catherine Meadows <meadows@itd.nrl.navy.mil>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "draft-kucherawy-authres-spf-erratum.all@tools.ietf.org" <draft-kucherawy-authres-spf-erratum.all@tools.ietf.org>
Date: Thu, 12 Jan 2012 09:24:53 -0800
Thread-Topic: Secdir review of draft-kucherawy-authres-spf-erratum-01
Thread-Index: AczRTbJverHZqFKRSHS5fILx6J8F7AAADXvg
Message-ID: <F5833273385BB34F99288B3648C4F06F19C6C15848@EXCH-C2.corp.cloudmark.com>
References: <8991BA91-8252-4DCF-8FCA-DEF5C04632D6@itd.nrl.navy.mil>
In-Reply-To: <8991BA91-8252-4DCF-8FCA-DEF5C04632D6@itd.nrl.navy.mil>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_F5833273385BB34F99288B3648C4F06F19C6C15848EXCHC2corpclo_"
MIME-Version: 1.0
X-Mailman-Approved-At: Thu, 12 Jan 2012 10:19:55 -0800
Subject: Re: [secdir] Secdir review of draft-kucherawy-authres-spf-erratum-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Jan 2012 17:24:55 -0000
Hi Catherine, thanks for your comments. The language chosen is basically acknowledgement that few if any implementations ever actually used "hardfail". The error was pointed out not long after RFC5451 was published and all of the implementations I know of did it properly from the beginning. So the posture is really one of "In case anyone ever did do it the wrong way, ...." Also, the word "recommended" has specific meaning under RFC2119 and it's my understanding that use of such normative language in Security Considerations ought to be avoided. Given all that, I'd be fine with saying "implementers are advised" versus "cautious implementers may wish". I'll add that to the -02 version. -MSK From: Catherine Meadows [mailto:meadows@itd.nrl.navy.mil] Sent: Thursday, January 12, 2012 9:25 AM To: iesg@ietf.org; secdir@ietf.org; draft-kucherawy-authres-spf-erratum.all@tools.ietf.org Cc: Catherine Meadows Subject: Secdir review of draft-kucherawy-authres-spf-erratum-01 This ID is definitely security relevant, as use of the wrong header could cause a failure to recognize a failed authorization. Thus in the Security Considerations section the authors say that "cautious implementers may wish to support both result strings for some period of time." One quibble: I believe that the above is good advice, but it seems a little hesitant. Why the use of the words "cautious" and "may"? Why not say that "we recommend that"? Even if failure to recognize a failed authorization doesn't lead to any immediate security problem, it could prevent recognition of a potential attack, or more benignly, of a possible misconfiguration. Catherine Meadows Naval Research Laboratory Code 5543 4555 Overlook Ave., S.W. Washington DC, 20375 phone: 202-767-3490 fax: 202-404-7942 email: catherine.meadows@nrl.navy.mil<mailto:catherine.meadows@nrl.navy.mil>
- [secdir] Secdir review of draft-kucherawy-authres… Catherine Meadows
- Re: [secdir] Secdir review of draft-kucherawy-aut… Catherine Meadows
- Re: [secdir] Secdir review of draft-kucherawy-aut… Murray S. Kucherawy