[Tools-discuss] Re: [EXTERNAL] Re: Re: Fwd: Brief outage for the RPC infrastructure tomorrow (15May)

Martin Thomson <mt@lowentropy.net> Fri, 17 May 2024 03:33 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: tools-discuss@ietfa.amsl.com
Delivered-To: tools-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8D69C180B72 for <tools-discuss@ietfa.amsl.com>; Thu, 16 May 2024 20:33:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.098
X-Spam-Level:
X-Spam-Status: No, score=-7.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b="fUVHMqz/"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="awemMrUR"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HFduguKEpb8Z for <tools-discuss@ietfa.amsl.com>; Thu, 16 May 2024 20:32:59 -0700 (PDT)
Received: from fhigh6-smtp.messagingengine.com (fhigh6-smtp.messagingengine.com [103.168.172.157]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2E454C14F6AA for <tools-discuss@ietf.org>; Thu, 16 May 2024 20:32:58 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.47]) by mailfhigh.nyi.internal (Postfix) with ESMTP id 4871211400D3; Thu, 16 May 2024 23:32:58 -0400 (EDT)
Received: from imap41 ([10.202.2.91]) by compute6.internal (MEProxy); Thu, 16 May 2024 23:32:58 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=cc:content-type:content-type:date:date:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:subject :subject:to:to; s=fm1; t=1715916778; x=1716003178; bh=ileDLlFcDX mKOwwwdFdiVvx0nCalAmu7DdJgOMm34aI=; b=fUVHMqz/jzFPGygBdvtoznIYRQ GLiwvvn31zwFrE9vTp33wXzICc/uvF1Ga4TC4RTOSciF4lMT7KUBcAHWclLJo9kn M+zRgwkdbHs1i1moTla3C1ueolRFqJCtmxJNCXstF4Qs06qMXWkFF7OyHEkQIx5P 6xry4x0RTv1xssP2NF8LbnMzI4fD4ZxrDSRLCeck/uuOSdIt/YMy1LFEUZ1eAWVb 7vqZq3dyXYrI+JiT4I8W9E3dS2fazJWags23nKi5yx3VJ3UVrBWbukLJfAgEb1bE Idoym+51qzAq044jbOwzUdOu70asUIPlRXvx3aGoeUL28aA8+a8WpjRSS2LA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:subject:subject:to :to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm3; t=1715916778; x=1716003178; bh=ileDLlFcDXmKOwwwdFdiVvx0nCal Amu7DdJgOMm34aI=; b=awemMrURvk3FKhpddHPjKjHKk1bLI/JqWxVSt5E3FKy0 adYnMicEjnXsIXM8uungCPgxovGQgLKPiq0VMZdSfGHVpzK/lrkplM1r6mi7jFc0 Lwr3F0ukEudsE9sz7mhVvzhCLKgTHLkGr1CD2MlymD7JCrbNeMSNxe8E46hYR0I2 Zh9itt49zEbBqQYESsu1vjuyFr1+W2eDsVX1bTfEdgF3oQyP22K4/hXxZWirhSys PC4u12cV08BxTG544eUGCjicLgyXyo7Qh3xpW0RgBanBYM88C/FQQ5GyVDkR0iA1 yfMls9AbEsTAXcNS3bYNnvqLvzGkId+7mK0xHlW6Jw==
X-ME-Sender: <xms:6s9GZhBEQYXDDDrQ8IGDy9XdcjlDL7Y63yGS6OeK8yTRlRusjOSRFw> <xme:6s9GZvh2pkZh0pSDWcVT40-ErFXnxqKsPoSDj2UFLwQ7_xcWxJHPJiPafuSb69_Fu cGackv61kPS8sdGBZo>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvledrvdehfedgudejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfggfkjghffffhvffutgesthdtredtreertdenucfhrhhomhepfdforghr thhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecugg ftrfgrthhtvghrnhepjedtgeetjeejkeethfelueegleeiledtgedtkeekgeeifeeuuedt jedvjeefvedtnecuffhomhgrihhnpehrfhgtqdgvughithhorhdrohhrghdphhhtthhpsh honhhthhgvohhthhgvrhhhrghnuggrtghhihgvvhgvshhthhgvghhorghlrghnughishgr lhhrvggrugihihhnphhlrggtvgdrnhhofienucevlhhushhtvghrufhiiigvpedtnecurf grrhgrmhepmhgrihhlfhhrohhmpehmtheslhhofigvnhhtrhhophihrdhnvght
X-ME-Proxy: <xmx:6s9GZsnPw1dKCZ867_MPUd-menqUCg-_pi0SGC1ScQBjWP2XNIAUMA> <xmx:6s9GZrx6PWsjPbAvyNiDfK2-Ybu7LKHF-R1gWdVmkFf8iwSzRWjHVw> <xmx:6s9GZmTuBU9VKJanMKcGFN-5cLNCoW5bSYnU9wqosPmsZZiHqwCZVw> <xmx:6s9GZub0yvbSqq0tWruXsyDUozp1b6fMlNcz_Opm2MlMqEgCOw1r6A> <xmx:6s9GZhfkEizV4hqL6pNKKb8Irdww2eYiYfhyjuZ_kew2Si1vHK1WaYbl>
Feedback-ID: ic129442d:Fastmail
Received: by mailuser.nyi.internal (Postfix, from userid 501) id F11662340080; Thu, 16 May 2024 23:32:57 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.11.0-alpha0-456-gcd147058c-fm-hotfix-20240509.001-g0aad06e4
MIME-Version: 1.0
Message-Id: <aa171275-ea4b-45cf-8c3e-a67678bfc533@betaapp.fastmail.com>
In-Reply-To: <e8a9c549-d32e-44e0-822f-85405224d7d8@gmail.com>
References: <20240517014737.3ED558B5947F@ary.qy> <e8a9c549-d32e-44e0-822f-85405224d7d8@gmail.com>
Date: Fri, 17 May 2024 13:32:37 +1000
From: Martin Thomson <mt@lowentropy.net>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, John R Levine <johnl@taugh.com>, tools-discuss@ietf.org
Content-Type: text/plain
Message-ID-Hash: RTCWIY7KE3FLROXPEZCHRO6FYCKEWQ4T
X-Message-ID-Hash: RTCWIY7KE3FLROXPEZCHRO6FYCKEWQ4T
X-MailFrom: mt@lowentropy.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tools-discuss.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Tools-discuss] Re: [EXTERNAL] Re: Re: Fwd: Brief outage for the RPC infrastructure tomorrow (15May)
List-Id: IETF Tools Discussion <tools-discuss.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tools-discuss/LH51x8Esbkrz9YWUlF6VBE5aFWs>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tools-discuss>
List-Help: <mailto:tools-discuss-request@ietf.org?subject=help>
List-Owner: <mailto:tools-discuss-owner@ietf.org>
List-Post: <mailto:tools-discuss@ietf.org>
List-Subscribe: <mailto:tools-discuss-join@ietf.org>
List-Unsubscribe: <mailto:tools-discuss-leave@ietf.org>

On Fri, May 17, 2024, at 13:12, Brian E Carpenter wrote:
>>> FTP provides neither of these.
>
> Well, it provides integrity modulo the TCP checksum, I think. As John
> Klensin just pointed out, if we were concerned about this, we'd really
> need the RPC to provide signatures.

The integrity that matters is whether someone, who is not the operator of rfc-editor.org, can cause you to think that you got RFC XXXX when you got something else.  FTP cannot provide that, TCP checksums or not.

Signatures are one way of achieving that outcome, but it's a big lift.  HTTPS on the other hand, achieves the goal, and is already in place.

Now, we've just had a few people telegraph that they would fight any attempt to turn FTP off.  The same happened for IETF servers in the past and the end result was that FTP was turned off.  That says something to me.