RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization
Murari Sridharan <muraris@microsoft.com> Thu, 26 July 2007 14:43 UTC
Return-path: <tcpm-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IE4YQ-00023I-TV; Thu, 26 Jul 2007 10:43:02 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IE4YK-0001ia-Vn; Thu, 26 Jul 2007 10:42:57 -0400
Received: from mail2.microsoft.com ([131.107.115.215] helo=smtp.microsoft.com) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IE4YK-0006O4-Hs; Thu, 26 Jul 2007 10:42:56 -0400
Received: from tk5-exhub-c103.redmond.corp.microsoft.com (157.54.70.186) by TK5-EXGWY-E802.partners.extranet.microsoft.com (10.251.56.168) with Microsoft SMTP Server (TLS) id 8.0.700.0; Thu, 26 Jul 2007 07:42:55 -0700
Received: from NA-EXMSG-C110.redmond.corp.microsoft.com ([157.54.62.150]) by tk5-exhub-c103.redmond.corp.microsoft.com ([157.54.70.186]) with mapi; Thu, 26 Jul 2007 07:42:55 -0700
From: Murari Sridharan <muraris@microsoft.com>
To: tsvwg WG <tsvwg@ietf.org>
Date: Thu, 26 Jul 2007 07:42:42 -0700
Subject: RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization
Thread-Topic: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization
Thread-Index: Ace+JxXMdyd0r6m8RjWOhYwptpupIgRazzkA
Message-ID: <FCA794787FDE0D4DBE9FFA11053ECEB60C26A1618E@NA-EXMSG-C110.redmond.corp.microsoft.com>
References: <200702111621.l1BGL6mw029875@venus.xmundo.net> <0E46EBE9-1C13-44B6-9C04-476D418F5A6D@nokia.com> <A6CE6259-646E-4C35-9DA3-8911A8CB2B54@nokia.com>
In-Reply-To: <A6CE6259-646E-4C35-9DA3-8911A8CB2B54@nokia.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b
Cc: ext, "tcpm@ietf.org" <tcpm@ietf.org>, DCCP mailing list <dccp@ietf.org>, Fernando Gont <fernando@gont.com.ar>, TSV Dir <tsv-dir@ietf.org>
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
Errors-To: tcpm-bounces@ietf.org
In this context I wanted to bring up a related issue that might also strengthen this sort of a port randomization proposal. Today the 64k port limitation is starting to become a huge problem and most often admins add ip addresses to increase the scalability. Given that most often the destination port (and sometimes the destination address) is well known, the only scalability left is the source address. Increasing ip addresses to improve scalability seems a fairly round about approach and frankly doesn't scale well. Given that the 64k limit is not fundamental why not provide a scaling factor similar to the receive window to scale the number of usable ports. This also makes randomization much more meaningful because in certain proxy scenarios the number of connections quickly exhausts the available ports and at that point the attacker can simply use any port assuming he can guess the source address. Murari -----Original Message----- From: Lars Eggert [mailto:lars.eggert@nokia.com] Sent: Wednesday, July 04, 2007 3:35 AM To: tsvwg WG Cc: tcpm@ietf.org; DCCP mailing list; ext Fernando Gont; TSV Dir Subject: Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization On 2007-5-31, at 17:51, ext Lars Eggert wrote: > The concepts in this draft are likely relevant to most of our > transport protocols, and hence would be in scope for TSVWG. The > TSVWG chairs are interested in comments on whether there is group > interest in this draft - please comment on tsvwg@ietf.org. We've received some positive feedback on adopting this draft, but I'd like to see a stronger show of support, because this draft impacts several of our transport protocols at the same time. Please comment on tsvwg@ietf.org - reply-to set accordingly. Lars _______________________________________________ tcpm mailing list tcpm@ietf.org https://www1.ietf.org/mailman/listinfo/tcpm
- [tcpm] Revision of draft-larsen-tsvwg-port-random… Fernando Gont
- Re: [tcpm] Revision of draft-larsen-tsvwg-port-ra… Lars Eggert
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Lars Eggert
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Murari Sridharan
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Anantha Ramaiah (ananth)
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Murari Sridharan
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Joe Touch
- Re: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Murari Sridharan
- Re: [Tsvwg] Re: [tcpm]Revision ofdraft-larsen-tsv… Wesley Eddy
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Joe Touch
- Re: [Tsvwg] Re: [tcpm]Revision ofdraft-larsen-tsv… Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Anantha Ramaiah (ananth)
- [tcpm] discussion of TCP option space Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Fernando Gont
- Re: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Joe Touch