IETF Logo Mail Archive

Re: [Curdle] Call for Adoption

"Mark D. Baushke" <mdb@juniper.net> Wed, 13 January 2016 15:40 UTC

Return-Path: <bounces-ietf-ssh-owner-secsh-tyoxbijeg7-archive=lists.ietf.org@NetBSD.org>
X-Original-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Delivered-To: ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CC9B1A900B for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Wed, 13 Jan 2016 07:40:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WuILFQg4Rw_7 for <ietfarch-secsh-tyoxbijeg7-archive@ietfa.amsl.com>; Wed, 13 Jan 2016 07:39:58 -0800 (PST)
Received: from mail.netbsd.org (mail.NetBSD.org [IPv6:2001:470:a085:999::25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C90B31A8836 for <secsh-tyoxbijeg7-archive@lists.ietf.org>; Wed, 13 Jan 2016 07:39:58 -0800 (PST)
Received: by mail.netbsd.org (Postfix, from userid 605) id 3363485EB8; Wed, 13 Jan 2016 15:39:58 +0000 (UTC)
Delivered-To: ietf-ssh@NetBSD.org
Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id F01C885EB8 for <ietf-ssh@NetBSD.org>; Wed, 13 Jan 2016 15:39:53 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.netbsd.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id 5WIB2Hi7oA44 for <ietf-ssh@netbsd.org>; Wed, 13 Jan 2016 15:39:53 +0000 (UTC)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bon0753.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::1:753]) by mail.netbsd.org (Postfix) with ESMTP id 3F8CD84CF6 for <ietf-ssh@NetBSD.org>; Wed, 13 Jan 2016 15:39:49 +0000 (UTC)
Received: from BLUPR05CA0065.namprd05.prod.outlook.com (10.141.20.35) by BN3PR0501MB1380.namprd05.prod.outlook.com (10.160.117.139) with Microsoft SMTP Server (TLS) id 15.1.361.13; Wed, 13 Jan 2016 15:39:45 +0000
Received: from BL2FFO11FD027.protection.gbl (2a01:111:f400:7c09::145) by BLUPR05CA0065.outlook.office365.com (2a01:111:e400:855::35) with Microsoft SMTP Server (TLS) id 15.1.365.19 via Frontend Transport; Wed, 13 Jan 2016 15:39:45 +0000
Authentication-Results: spf=softfail (sender IP is 66.129.239.19) smtp.mailfrom=juniper.net; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=juniper.net;
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.19 as permitted sender)
Received: from p-emfe01b-sac.jnpr.net (66.129.239.19) by BL2FFO11FD027.mail.protection.outlook.com (10.173.161.106) with Microsoft SMTP Server (TLS) id 15.1.355.15 via Frontend Transport; Wed, 13 Jan 2016 15:39:45 +0000
Received: from magenta.juniper.net (172.17.27.123) by p-emfe01b-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Wed, 13 Jan 2016 07:39:43 -0800
Received: from eng-mail01.juniper.net (eng-mail01.juniper.net [172.17.28.114]) by magenta.juniper.net (8.11.3/8.11.3) with ESMTP id u0DFdgD44762; Wed, 13 Jan 2016 07:39:42 -0800 (PST) (envelope-from mdb@juniper.net)
Received: from eng-mail01.juniper.net (localhost [127.0.0.1]) by eng-mail01.juniper.net (Postfix) with ESMTP id B827F1141B; Wed, 13 Jan 2016 07:39:41 -0800 (PST)
To: Curdle Chairs <curdle-chairs@ietf.org>
CC: Curdle <curdle@ietf.org>, ietf-ssh@NetBSD.org
Subject: Re: [Curdle] Call for Adoption
In-Reply-To: <2DD56D786E600F45AC6BDE7DA4E8A8C1121B1409@eusaamb107.ericsson.se>
References: <2DD56D786E600F45AC6BDE7DA4E8A8C1121B1409@eusaamb107.ericsson.se>
Comments: In-reply-to: Daniel Migault <daniel.migault@ericsson.com> message dated "Tue, 12 Jan 2016 19:58:46 +0000."
From: "Mark D. Baushke" <mdb@juniper.net>
X-Phone: +1 408 745-2952 (Office)
X-Mailer: MH-E 8.5; nmh 1.2; GNU Emacs 24.3.1
X-Face: #8D_6URD2G%vC.hzU<dI&#Y9szHj$'mGtUq&d=rXy^L$-=G_-LmZ^5!Fszk:yXZp$k\nTF? 8Up0!v/%1Q[(d?ES0mQW8dRCXi18gK)luJu)loHk, }4{Vi`yX?p?crF5o:LL{6#eiO:(E:YMxLXULB k|'a*EjN.B&L+[J!PhJ*aX0n:5/
Date: Wed, 13 Jan 2016 07:39:41 -0800
Message-ID: <65770.1452699581@eng-mail01.juniper.net>
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11FD027; 1:aixbU1gvdFqeJsD0qFKj9dlPensIl4m8jWEM2AJBg+8Gn1TGQq0wIfHA9ZwlO5JhgNZVZTBsMA6xZS/afPGLjr/MIheOSDZphAp6+Mvved7IdQ1DCiN7H0fSo7QP8zibN7z+kijFAwTZsgfJxArgLQ4HERod7ES7M96MGONa7EQdN/7FaNUaAhowNyvfPEUpXre+aUptr0YTwXHhaibU0W8QDH/J/JUITuL4mdn3r6Vk/IP7hR3TG6sijkYZ4p/VdjuVYwrgiBMWxJF6YbWeXnJYC4Wxm7EwlduwNcXZH/TNCgneJeXGR0n/q1PtYqYaFqv3zOq66WG9x4mShCsiuZkfLBZMfQ7vRSaf1i1XEsU=
X-Forefront-Antispam-Report: CIP:66.129.239.19; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(2980300002)(22974007)(24454002)(189002)(479174004)(199003)(586003)(53416004)(76506005)(50466002)(48376002)(50986999)(1096002)(92566002)(1220700001)(5003940100001)(5003600100002)(117636001)(86362001)(106466001)(47776003)(19580395003)(15975445007)(69596002)(77096005)(87936001)(19580405001)(105596002)(2950100001)(50226001)(110136002)(97736004)(5001960100002)(81156007)(6806005)(2906002)(4326007)(76176999)(189998001)(11100500001)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN3PR0501MB1380; H:p-emfe01b-sac.jnpr.net; FPR:; SPF:SoftFail; PTR:InfoDomainNonexistent; MX:1; A:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0501MB1380; 2:7Z/cQNKNUQrZ47RNrwATj9Hs6AfubRPRp3GxKAgfmTycRBG8yHVtzQiResSWxoIiBrO8JWHWE0Q5pDkE3PpM7FqUqyWdW8QueI9ULRVdad2PnKH2r9ufrRyHtMzmHviOZyPMm8pKRzlg7jODqx/mEQ==; 3:Q1WLLMmqtq8saoM4E8SSnn34Q3gBxbDzR/WdqQsMCT92ASr7Jpr+9uVty9bxPsa9JV/FeZYA/vULCJ3rGkC7YOvunUUhoXA7s4ZSM7vBcQ+uffYzhxBzwWVztsWcGG4AaXEvVpyMbOWuBjJ8KBcnGRfR7p5Nc4wBnjPyfBOnrfX8+/t7BXh1csEZB8K+RSgykV+TXBn5YrT08DZqVp8sk7dOVYKZGeGIBDYmL7YCo48=; 25:1vfrlGHPoUJhUa3g3+9o9XERahSkj7WZ/8MyiRV9M14qlugRMA+lJkc3I4u+bQ1ay8wRXlSJDiAMQF4/4rvXLkofkFr2el0hKuaCcnIDxEkb8RYiVodiLtDtoJ087Ms3Las9Y0sAy/O05Dlff71kDishwiFgzeTYZs/uu1lB8NuNMGDCLSIG6zhKZSwxrY7Smm0KrKBRcNpkxONtik2dqqp9GkAN9+C7pIH09ihkKRMQSEXs+U3zGjNkPAxCyLxk
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BN3PR0501MB1380;
X-MS-Office365-Filtering-Correlation-Id: a6d65ed6-9630-4001-8329-08d31c2fc351
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0501MB1380; 20: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
X-Microsoft-Antispam-PRVS: <BN3PR0501MB1380D49640F410881EFE8BEDBFCB0@BN3PR0501MB1380.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(32856632585715);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(2401047)(13018025)(5005006)(13015025)(13017025)(520078)(8121501046)(3002001)(10201501046); SRVR:BN3PR0501MB1380; BCL:0; PCL:0; RULEID:; SRVR:BN3PR0501MB1380;
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0501MB1380; 4:dyJFuXkwq4SOqXbs955QC9xLxbXwqrQwNnZMYc7eNKZ5zsQ6lXXu1n5LeUC0rP+cLcaROdDnVBMfXHuNqPyAEkeGkyZXQrHAXsP6B83Q3eGRSfuVv71woR9TCTBIl1a/I0Hxd3mGEfXQM+wNnIaUtPp63vFt/LwnePcETv1Yabc5sSPuakOG84yPx9CgBIiU014PH5aY4uT6RPANCsGf7c0OGx7RrO7qDPcRbWjS8DNqzX6j08URjmtpf8nm54Vl2eCNBvyB9C2YfrRo9Oaq/XGaMj1Dz2UAJybNZT+S3FDMSeV/+D5JOOoW2wIEzY3Q2ZtxdPGob82NdjkB6be38AuAHNe0TgKPDcfDffZPMR+lDmGh2JRblawnyReb8YvmAxuVuscTBBizzTg6PZ1AyX+TKIaCqZ0gZqAuQUit+41Sl9s7vGPRrfnv429cUhBVnD1jwAaps4KY4wt+TGiaY1i61yj0k62ZkoTmPzyj89U=
X-Forefront-PRVS: 08200063E9
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0501MB1380; 23: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
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0501MB1380; 5:/ZUQPGMswERODA8cz1YSCGvjECib51ZgfEmoB2dwwveCkOQmvPoN01FqKSovBB+LcLIW9i/grTX5ugS/1zXK41cUFimOwyg3wiGR5p9WW+2seAeJx3hHrOUpuDXgBc71dZ5dt1uOMS0auD2CD+L6zw==; 24:iNk4TmVU+V2OLrVlY9twkCsNLNvaHkGYf6hTA8GFe75+1V+2WxJNOCucEi49g+F2QF9nGawVj7f/fvVkU5nPYc99YDojTgMkYM0bWxoJyk4=
SpamDiagnosticOutput: 1:23
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Jan 2016 15:39:45.0319 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.19]; Helo=[p-emfe01b-sac.jnpr.net]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN3PR0501MB1380
Sender: ietf-ssh-owner@NetBSD.org
List-Id: ietf-ssh.NetBSD.org
Precedence: list

Hi,

Over on the ietf-ssh@NetBSD.org list, Stephen Farrell suggested that I
see if I could add

  https://datatracker.ietf.org/doc/draft-baushke-ssh-dh-group-sha2 

under the curdle charter. 

The draft deprecates a Secure Shell (SSH) key exchange algorithm
(Diffie-Hellman group1 - a 768-bit MODP group) and recommends
replacement with stronger Diffie-Hellman MODP groups (groups 14, 15,
16).

The draft does have two interoperable implementations that have
implemented it.

Does it fit well enough into the curdle charter to be added here?

	Thank you,
	-- Mark

 ------- forwarded message -------
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Wed, 13 Jan 2016 10:34:05 +0000
Subject: Re: draft-baushke-ssh-dh-group-sha2-01 (was Re: DH group exchange)

Hiya,

On 13/01/16 09:21, Mark D. Baushke wrote:
> Hi,
> 
> URL: https://datatracker.ietf.org/doc/draft-baushke-ssh-dh-group-sha2
> 
> I believe that OpenSSH and Dropbear SSH have both implemented interoperable
> versions using the current 01 version at this point in time.
> 
> I would be interested in hearing if any other implementations have
> adopted these new DH groups.
> 
> Are there any additional comments or changes needed for the draft before
> we can move to the next step in the process?
> 
> Hmmm... What is next? Getting 'AD is watching' or is it getting a
> document shepherd?

There's no active SSH WG, but there is the curdle WG. Its
charter [1] however is limited in terms of what it's
allowed to add to protocols. OTOH, this is not defining any
new groups, just updating codepoints, including deprecating
one (to NOT RECOMMENDED). So the draft could fit there on
that basis I guess. So I'd say send a mail to the curdle
list and suggest this be adopted there.

If that doesn't work I can look at AD sponsoring it, but
since one of the reasons to setup curdle was to avoid too
many of these being AD sponsored, please try there first.

Cheers,
S.

[1] https://tools.ietf.org/wg/curdle

> 
> 	Thank you,
> 	-- Mark

v2.23.0 | Report a Bug | By Email