Re: [secdir] SecDir review of draft-ietf-pim-hello-intid-01
Chris Lonvick <clonvick@cisco.com> Mon, 08 August 2011 20:58 UTC
Return-Path: <clonvick@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F78311E80B4; Mon, 8 Aug 2011 13:58:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -104.599
X-Spam-Level:
X-Spam-Status: No, score=-104.599 tagged_above=-999 required=5 tests=[AWL=-2.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id adBUiUwSD-Fv; Mon, 8 Aug 2011 13:58:57 -0700 (PDT)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) by ietfa.amsl.com (Postfix) with ESMTP id BB55F11E80AE; Mon, 8 Aug 2011 13:58:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=clonvick@cisco.com; l=1605; q=dns/txt; s=iport; t=1312837165; x=1314046765; h=date:from:to:subject:in-reply-to:message-id:references: mime-version; bh=oprCJ30nEMsOIenroh/j/jelL9PpgFIgSSPXXutWYD8=; b=AdpHar2DDx7kTSu2S/p5u8KhpguZ1nAKA7d/eq+JCVWMDQy1ad+h0+vx wOraeX/b2pI4+VmuUXBBpO7J2dEPog0fgWCg/NYEXkN7+FqeKnHBeMAiz taszB9hKEkUxkylenyatliL6fxwV7xH23r+IWpV17o9blss1Lu0sAaCsV 4=;
X-IronPort-AV: E=Sophos;i="4.67,339,1309737600"; d="scan'208";a="10984562"
Received: from mtv-core-2.cisco.com ([171.68.58.7]) by rcdn-iport-5.cisco.com with ESMTP; 08 Aug 2011 20:59:24 +0000
Received: from sjc-cde-021.cisco.com (sjc-cde-021.cisco.com [171.69.20.56]) by mtv-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p78KxNeG029466; Mon, 8 Aug 2011 20:59:23 GMT
Date: Mon, 08 Aug 2011 13:59:23 -0700
From: Chris Lonvick <clonvick@cisco.com>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-pim-hello-intid.all@tools.ietf.org, Michael McBride <mmcbride@cisco.com>
In-Reply-To: <Pine.GSO.4.63.1108081328200.22397@sjc-cde-021.cisco.com>
Message-ID: <Pine.GSO.4.63.1108081358020.22397@sjc-cde-021.cisco.com>
References: <Pine.GSO.4.63.1108081328200.22397@sjc-cde-021.cisco.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Subject: Re: [secdir] SecDir review of draft-ietf-pim-hello-intid-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Aug 2011 20:58:58 -0000
Hi, Resending because I keep forgetting to remove the "-xx" from the document title to make the mailer happy. Thanks, Chris On Mon, 8 Aug 2011, Chris Lonvick wrote: > Hi, > > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the > IESG. These comments were written primarily for the benefit of the > security area directors. Document editors and WG chairs should treat > these comments just like any other last call comments. > > Overall I find the document to be of good quality and I agree that the > security considerations section is adequate. > > While PIM is certainly not my strong suit the document is understandable > except for the following paragraph from Section 2.1: > > The Local Interface Identifier MUST be non-zero. The reason for > this, is that some protocols may want to only optionally refer to an > Interface using the Interface Identifier Hello option, and use the > value of 0 to show that it is not referred to. Note that the value > of 0 is not a valid ifIndex as defined in [RFC1213]. > > This seems to be saying that the Local Interface Identifier must not be 0, > except when some protocol wants to use the Interface Identifier Hello to not > refer to any actual interface. Which leaves me confused. > > Regards, > Chris > _______________________________________________ > secdir mailing list > secdir@ietf.org > https://www.ietf.org/mailman/listinfo/secdir > wiki: http://tools.ietf.org/area/sec/trac/wiki/SecDirReview >
- [secdir] SecDir review of draft-ietf-pim-hello-in… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Stig Venaas
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Stig Venaas