Re: [Simple] <note> in IMDN
Paul Kyzivat <pkyzivat@cisco.com> Fri, 23 May 2008 22:23 UTC
Return-Path: <simple-bounces@ietf.org>
X-Original-To: simple-archive@megatron.ietf.org
Delivered-To: ietfarch-simple-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 41A4E3A6D00; Fri, 23 May 2008 15:23:18 -0700 (PDT)
X-Original-To: simple@core3.amsl.com
Delivered-To: simple@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 418F83A6D00 for <simple@core3.amsl.com>; Fri, 23 May 2008 15:23:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id abRPGRa7e7Ys for <simple@core3.amsl.com>; Fri, 23 May 2008 15:23:15 -0700 (PDT)
Received: from rtp-iport-1.cisco.com (rtp-iport-1.cisco.com [64.102.122.148]) by core3.amsl.com (Postfix) with ESMTP id BCC3C3A6D23 for <simple@ietf.org>; Fri, 23 May 2008 15:23:14 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.27,532,1204520400"; d="scan'208";a="9177610"
Received: from rtp-dkim-1.cisco.com ([64.102.121.158]) by rtp-iport-1.cisco.com with ESMTP; 23 May 2008 18:23:13 -0400
Received: from rtp-core-2.cisco.com (rtp-core-2.cisco.com [64.102.124.13]) by rtp-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id m4NMNDt6025225; Fri, 23 May 2008 18:23:13 -0400
Received: from xbh-rtp-211.amer.cisco.com (xbh-rtp-211.cisco.com [64.102.31.102]) by rtp-core-2.cisco.com (8.13.8/8.13.8) with ESMTP id m4NMNDJq014498; Fri, 23 May 2008 22:23:13 GMT
Received: from xfe-rtp-201.amer.cisco.com ([64.102.31.38]) by xbh-rtp-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 23 May 2008 18:23:13 -0400
Received: from [161.44.174.168] ([161.44.174.168]) by xfe-rtp-201.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 23 May 2008 18:23:13 -0400
Message-ID: <483743F6.8060903@cisco.com>
Date: Fri, 23 May 2008 18:23:50 -0400
From: Paul Kyzivat <pkyzivat@cisco.com>
User-Agent: Thunderbird 2.0.0.14 (Windows/20080421)
MIME-Version: 1.0
To: Eric Burger <eburger@sipforum.org>
References: <1660532724-1210725948-cardhu_decombobulator_blackberry.rim.net-784864713-@bxe033.bisx.prod.on.blackberry> <66cd252f0805131939t6569dab7r45d8ced20471a157@mail.gmail.com> <77384F67-E82C-483C-B555-665BFAF02D4E@standardstrack.com> <66cd252f0805132138m23aa3f42kf01ce0dcb7c42181@mail.gmail.com> <3092F25A-A072-4952-9C44-8C639B1925E2@softarmor.com> <4834C22B.1000407@cisco.com> <AD5C512E-842F-48F3-8824-03EE8A7F7905@sipforum.org> <48374058.3030601@cisco.com> <C06ADE83-1F99-43F5-BC50-DEE465B0F0F5@sipforum.org>
In-Reply-To: <C06ADE83-1F99-43F5-BC50-DEE465B0F0F5@sipforum.org>
X-OriginalArrivalTime: 23 May 2008 22:23:13.0122 (UTC) FILETIME=[96C77C20:01C8BD23]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=4254; t=1211581393; x=1212445393; c=relaxed/simple; s=rtpdkim1001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=pkyzivat@cisco.com; z=From:=20Paul=20Kyzivat=20<pkyzivat@cisco.com> |Subject:=20Re=3A=20[Simple]=20<note>=20in=20IMDN |Sender:=20 |To:=20Eric=20Burger=20<eburger@sipforum.org>; bh=5i8fgCQDIaHzyqHn1+b8yJd98kdoInCfnYPaxt4Ktb8=; b=K5zetB6BYjt0IKM55KH8nuxeOkt5ecob+ToH3/RyduDe11CawcrCocfFat rVvoZ4vnByuIaL4/5adpcEFrk0sYQ3bD9UFjUB69mnAvmqfM1KoMz+91idqv pZhN03FWIB;
Authentication-Results: rtp-dkim-1; header.From=pkyzivat@cisco.com; dkim=pass ( sig from cisco.com/rtpdkim1001 verified; );
Cc: simple@ietf.org
Subject: Re: [Simple] <note> in IMDN
X-BeenThere: simple@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: SIP for Instant Messaging and Presence Leveraging Extensions <simple.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/simple>
List-Post: <mailto:simple@ietf.org>
List-Help: <mailto:simple-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: simple-bounces@ietf.org
Errors-To: simple-bounces@ietf.org
Eric Burger wrote: > 1. The content Then aren't you concerned with all the nearly unconstrained content that is possible in sip itself? (quoted-strings can be used in many places, and comments are allowed in a few.) In the context you are talking about, the content is constrained by the syntax of xml. Are you concerned with the xml parser screwing up? Or with an application screwing up processing the content after it has been parsed from the xml - perhaps by doing a bad job of trying to display it? > 2. IMDN is only for page-mode IM, not MSRP Oops, sorry. I forgot IMDN had been thrown out of MSRP. Paul > On May 23, 2008, at 5:08 PM, Paul Kyzivat wrote: > >> Eric, >> >> I guess I'm missing what kink of problem you are trying to prevent by >> constraining the content, and what kinds of constraints are needed for >> this to be helpful. >> >> Are you concerned with unconstrained *length* or unconstrained >> *content*? You can already put fields of unconstrained length and nearly >> unconstrained content into MSRP headers, in those places where >> quoted-string are allowed. >> >> Paul >> >> Eric Burger wrote: >>> Actually, IMDNs, even the SIMPLE free-form fields, are fairly >>> constrained. Any mis-match is an opportunity to filter out bad IMDNs. >>> The <note> field has three problems: >>> >>> 1. It cannot be filtered, as any content could be real (which introduces >>> the attack vector) >>> >>> 2. It cannot know what language it should use, and thus is not likely to >>> be useful to the recipient >>> >>> 3. It has no protocol value, and is of no value to the UA >>> >>> >>> So, if something has no useful protocol value and introduces a spam >>> opportunity, why would we want to include it? >>> >>> >>> >>> On May 21, 2008, at 7:45 PM, Paul Kyzivat wrote: >>> >>>> Its kind of late to be thinking about this now. THe problem is >>>> pervasive >>>> in MSRP. >>>> >>>> In SIP there are lots of unconstrained fields. But they are all >>>> constrained by the overall size of the message, and people commonly put >>>> limits on that. >>>> >>>> In MSRP, because of chunking, a single MSRP message can be gigabytes >>>> long. So using that to bound the unconstrained parts of the headers >>>> doesn't work very well. >>>> >>>> A robust implementation might take a similar approach - define its own >>>> limit on the total message size, excluding the body. Then it could >>>> constrain all the unconstrained fields to fit within it. >>>> >>>> But picking on one header isn't a solution to the problem. Either >>>> assume >>>> the developers will be able to deal with it, or else do and MSRPv2 that >>>> eliminates all unconstrained fields. >>>> >>>> Paul >>>> >>>> Dean Willis wrote: >>>>> On May 13, 2008, at 11:38 PM, Hisham Khartabil wrote: >>>>> >>>>>> Can you explain how it is an attack vector? >>>>> >>>>> >>>>> Unconstrained rich content is one of the most easily exploited attack >>>>> vectors. >>>>> >>>>> Buffer overrun attacks as well as all of the typical MIME compound- >>>>> component attacks are likely. For example, the common JPEG >>>>> vulnerabilities might be exploitable: >>>>> >>>>> http://www.news.com/Image-virus-spreads-via-chat/2100-7349_3-5390463.html >>>>> >>>>> >>>>> >>>>> >>>>> Or the content-execution weakness that caused the Macintosh Safari >>>>> browse to be most easily exploited in recent hacking contests: >>>>> >>>>> http://www.engadget.com/2007/07/23/safari-exploit-gives-hackers-full-control-of-your-iphone/ >>>>> >>>>> >>>>> >>>>> >>>>> There have also been exploits against QuickTime, Flash, and most other >>>>> plugin components from time to time. >>>>> >>>>> -- >>>>> Dean >>>>> _______________________________________________ >>>>> Simple mailing list >>>>> Simple@ietf.org >>>>> https://www.ietf.org/mailman/listinfo/simple >>>>> >>>> _______________________________________________ >>>> Simple mailing list >>>> Simple@ietf.org >>>> https://www.ietf.org/mailman/listinfo/simple >>> >>> >> _______________________________________________ >> Simple mailing list >> Simple@ietf.org >> https://www.ietf.org/mailman/listinfo/simple > > _______________________________________________ Simple mailing list Simple@ietf.org https://www.ietf.org/mailman/listinfo/simple
- Re: [Simple] <note> in IMDN Hisham Khartabil
- [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN eburger
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Dean Willis
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN Paul Kyzivat
- Re: [Simple] <note> in IMDN Paul Kyzivat
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Paul Kyzivat
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Paul Kyzivat
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Dean Willis
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Ben Campbell
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN Eric Burger
- Re: [Simple] <note> in IMDN Aki Niemi
- Re: [Simple] <note> in IMDN Hisham Khartabil
- Re: [Simple] <note> in IMDN Eric Burger