Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)
Oleg Moskalenko <mom040267@gmail.com> Mon, 11 May 2015 23:45 UTC
Return-Path: <mom040267@gmail.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69C7D1AC3A6; Mon, 11 May 2015 16:45:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.75
X-Spam-Level:
X-Spam-Status: No, score=-1.75 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 65S72BC3oVX4; Mon, 11 May 2015 16:45:05 -0700 (PDT)
Received: from mail-wg0-x235.google.com (mail-wg0-x235.google.com [IPv6:2a00:1450:400c:c00::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE4F01A92FE; Mon, 11 May 2015 16:45:04 -0700 (PDT)
Received: by wggj6 with SMTP id j6so8287852wgg.3; Mon, 11 May 2015 16:45:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=mhz/24cQC64cSfR5wK/A6PUn2pFouwleIIzyR8F/IYY=; b=gLd5x1nv5SO21dMTCeS8TH1QW5s9l1grrK/Y2znXXl4jgHh0ZEj0OpbioEmiuB0t2S nueX0WOk6akE/6q09RyYLg7gdOXX6kU1bOG3EaEinpq//weThfxhPsT7m5O2TPfCoCwz LP9M77AZRF4BCGGEjNX/Vzqc4o108rBujupYCIFiw/YPYc8kynOy4Xf5s5bMWSOMQXHR qKK7J9ZSsluuJmsc06T2X/7zpb24ra5DToruonrl9GsH/4sq6Lav2LqTU2gcy33F7WCy sYnMxyN61CWnHsd8GvM9XNbDtzJ2SpiUGdgcltD7F53sjeKeo5+BES3cgc4hrdFYNTh5 KPfg==
MIME-Version: 1.0
X-Received: by 10.194.186.145 with SMTP id fk17mr24910203wjc.156.1431387903492; Mon, 11 May 2015 16:45:03 -0700 (PDT)
Received: by 10.194.233.105 with HTTP; Mon, 11 May 2015 16:45:03 -0700 (PDT)
In-Reply-To: <20150511233012.17046.42319.idtracker@ietfa.amsl.com>
References: <20150511233012.17046.42319.idtracker@ietfa.amsl.com>
Date: Mon, 11 May 2015 16:45:03 -0700
Message-ID: <CALDtMr+x2Mi8v0jwFUscryccjc7Zf0o-mPo64S2dpHPqnnoXUA@mail.gmail.com>
From: Oleg Moskalenko <mom040267@gmail.com>
To: Alissa Cooper <alissa@cooperw.in>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/tram/2_am0CH-bYUI_VodjUS4IU2pNCA>
Cc: tram-chairs@ietf.org, "tram@ietf.org" <tram@ietf.org>, draft-ietf-tram-stun-origin.shepherd@ietf.org, draft-ietf-tram-stun-origin.ad@ietf.org, Simon Perreault <sperreault@jive.com>, The IESG <iesg@ietf.org>, draft-ietf-tram-stun-origin@ietf.org
Subject: Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 May 2015 23:45:06 -0000
On Mon, May 11, 2015 at 4:30 PM, Alissa Cooper <alissa@cooperw.in> wrote: > Alissa Cooper has entered the following ballot position for > draft-ietf-tram-stun-origin-05: Discuss > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-tram-stun-origin/ > > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > This is a bit of a weird DISCUSS since I didn't manage to ballot when the > document was first on the IESG's agenda, so I'm coming in mid-stream. > > I support Stephen's DISCUSS. If Alan's proposed changes make it into the > document, they would resolve most of my concerns. However, I still see a > problem with this proposed new text: > > "For STUN requests sent without authentication to a STUN server (i.e. > > STUN binding requests sent to a STUN server), the STUN client SHOULD > > include the ORIGIN attribute. The ORIGIN attribute MUST NOT be > included > > if it is a "privacy-sensitive" context, as discussed in the Security > Considerations > > section." > > For requests sent with authentication, I understand that the origin > attribute needs to be accurate in order for the client to authenticate. > In those cases, the STUN server can rely on the attribute it receives. > But for requests without authentication, what prevents the client from > lying? if the client is lying, then the request will not be authenticated and it will be rejected - because the client's credentials will be incorrect. I see that many people cannot grasp that very simple concept. There is no benefits in lying in this case. Think about ORIGIN as simply a logical virtual database name where the user account will be searched and against that database the credentials will be verified. This information is not sensitive, and lying is not giving you any unjust benefits. The only outcome that you can achieve by lying is screwing your own request - that's it. > And if those requests are not (D)TLS-protected, what prevents them > from being modified in transit? I understand Alan to be saying that the > justification for the origin in this case is operational troubleshooting, > but if the server can't rely on the origin it receives, doesn't that make > it risky for the server to act on that information? No, as I explained above. > > My additional concern is about the use of "logging" as a justification > for including and origin attribute. Logging in and of itself is not a > reasonable justification. Why ? > Alan's mail discussed the use of the origin for > operational troubleshooting, which seems like what might actually be > intended instead of "logging." In any event the purpose for the logging > either needs to be explained or "logging" should not be listed as a > justification. Why ? > > > > > _______________________________________________ > tram mailing list > tram@ietf.org > https://www.ietf.org/mailman/listinfo/tram
- [tram] Alissa Cooper's Discuss on draft-ietf-tram… Alissa Cooper
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Oleg Moskalenko
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Alissa Cooper
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Yoakum, John H (John)
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Stephen Farrell
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Simon Perreault
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Simon Perreault
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Stephen Farrell
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Simon Perreault
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Stephen Farrell
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Simon Perreault
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Alissa Cooper
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Spencer Dawkins at IETF
- Re: [tram] Alissa Cooper's Discuss on draft-ietf-… Alan Johnston