IETF Logo Mail Archive

Re: [Tsv-art] [OPSEC] Tsvart last call review of draft-ietf-opsec-ipv6-eh-filtering-06

Stewart Bryant <stewart.bryant@gmail.com> Wed, 05 December 2018 14:31 UTC

Return-Path: <stewart.bryant@gmail.com>
X-Original-To: tsv-art@ietfa.amsl.com
Delivered-To: tsv-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84659130E01; Wed, 5 Dec 2018 06:31:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JTK8P6pbkVTt; Wed, 5 Dec 2018 06:31:46 -0800 (PST)
Received: from mail-wr1-x42b.google.com (mail-wr1-x42b.google.com [IPv6:2a00:1450:4864:20::42b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C0CB130E1E; Wed, 5 Dec 2018 06:31:46 -0800 (PST)
Received: by mail-wr1-x42b.google.com with SMTP id z5so19911377wrt.11; Wed, 05 Dec 2018 06:31:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=I9CqO5Ei5qRe3HpyWoY5INCwrrh2hJM61gjUcfL7PLw=; b=ePx0d71rF1kbo1ksarl0MQRlBo+aha2kcj8IBe5TeQyr+NkMyEXmLW/AMv6CQOxjeG ltzawNfclVDLKWPke17Rftvp4UajEuZiQbjShSJll6P+W3W1N6IX91LaPecoALJJ2YzB eGD3+mZsoLrTiwCU6FlDApcxm7oaZxhVhlRU4yRH42WefUjKwJO9nQKOzymdujquu4mY 5Torv2FP8v5h6ofKHcEpod8uKCHnKjzWQeWYresGr+ZmQuvS4Gdj3LJcu9HX798/3TJ7 2SHr16Ji4bl8POFz/KCbpnExv21/l0hcrKFvctyKI6eEtBGYTqMmGbA8B2wzxCZeT2JB scQQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=I9CqO5Ei5qRe3HpyWoY5INCwrrh2hJM61gjUcfL7PLw=; b=uS6bDEcFNvJNrH/Y2x4lknt1tzGwGQUabfKedWZ0j3/PGYDIB19y7EqnKLow4GKfm2 4Bs+TYItMJijfcdEuWtNJZ3RnXQX0SBOHn7N0ebo7iczIJoEVgD0L53uO6hGpI1SyB2Q QiB07ArEsGZy71OKwAwY/UUiq4/r8RG3/fbrG9vJIuzlo39/VzI8NzbsmUHwiFXh+aa1 n4Th+ujpNgpNDd6cBBanIaJDklMsYDWFUTTGbqbj4FsZMm1WOO/Jr4Q4glR4IDkcSus6 VXRbFbxmNQIHEEtG+ScMaRdzMRY49SmbRDejYHjJ10pwS3rYsKyAUOUt0O0aMegiNBKC JPQw==
X-Gm-Message-State: AA+aEWaah/OBVvsDX+VgEAEm25qSANGKQFc+HHLCwr/oRlyw/yaIkn3P jzuZUAIEW67dYLuEQ2FlXMtnZHwh
X-Google-Smtp-Source: AFSGD/UW/CpJ+2VeSYo8QWRBNV8PTHj9PZuTzGiRx+GVTOkMFJ4CyCGqm6ma6IH//E00VAQgCNIEUw==
X-Received: by 2002:adf:9168:: with SMTP id j95mr21639379wrj.217.1544020304121; Wed, 05 Dec 2018 06:31:44 -0800 (PST)
Received: from [192.168.2.198] (host213-123-124-182.in-addr.btopenworld.com. [213.123.124.182]) by smtp.gmail.com with ESMTPSA id x12sm12479381wmc.37.2018.12.05.06.31.43 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 05 Dec 2018 06:31:43 -0800 (PST)
To: Joe Touch <touch@strayalpha.com>, Gert Doering <gert@space.net>
Cc: IETF-Discussion Discussion <ietf@ietf.org>, draft-ietf-opsec-ipv6-eh-filtering.all@ietf.org, opsec@ietf.org, tsv-art@ietf.org
References: <CAL9jLaY4h75KK4Bh-kZC6-5fJupaNdUfm1gK2Dg99jBntMCEyQ@mail.gmail.com> <C47149DC-CAF2-449F-8E18-A0572BBF4746@strayalpha.com> <CAL9jLaYfysKm7qrG=+jq7zV=5ODnSX-tAhBAiTU7SzYF-YmcGw@mail.gmail.com> <728C6048-896E-4B12-B80B-2091D7373D16@strayalpha.com> <CAL9jLaYHVdHr+rVoWeNtXTXgLxbTaX8V9gn3424tvsLW60Kvow@mail.gmail.com> <5E70C208-0B31-4333-BB8C-4D45E678E878@isc.org> <CAN-Dau0go6_Puf0A9e7KBpk0ApJBUvcxYtezxnwNc-8pKJ3PwQ@mail.gmail.com> <4D69FA8E-FB8A-4A16-9CA6-690D8AE33C9E@strayalpha.com> <20181205122142.GJ1543@Space.Net> <F17C4944-09EC-4AAC-84A0-B660E36AAE89@strayalpha.com> <20181205133821.GL1543@Space.Net> <B6280E0C-6B20-43C1-BB34-170FB06F1EF7@strayalpha.com>
From: Stewart Bryant <stewart.bryant@gmail.com>
Message-ID: <49ce09a7-8974-fc74-f2ed-c5ef734095a7@gmail.com>
Date: Wed, 05 Dec 2018 14:31:42 +0000
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1
MIME-Version: 1.0
In-Reply-To: <B6280E0C-6B20-43C1-BB34-170FB06F1EF7@strayalpha.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-GB
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsv-art/o0V_SfZRn330-SSAnGgMSS_D9XY>
Subject: Re: [Tsv-art] [OPSEC] Tsvart last call review of draft-ietf-opsec-ipv6-eh-filtering-06
X-BeenThere: tsv-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Review Team <tsv-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsv-art/>
List-Post: <mailto:tsv-art@ietf.org>
List-Help: <mailto:tsv-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Dec 2018 14:31:56 -0000

As far as I see, this thread illustrates that there is a significant gap 
between the protocol designers, the protocol implementers and the 
protocol users. This is something that needs to be addressed if the IETF 
is not to loose its reason to exist.

Best regards

Stewart


On 05/12/2018 13:45, Joe Touch wrote:
> Vendors are not required to lie when claiming IPv6 support.
>
>> On Dec 5, 2018, at 5:38 AM, Gert Doering <gert@space.net> wrote:
>>
>> Hi,
>>
>> On Wed, Dec 05, 2018 at 04:31:17AM -0800, Joe Touch wrote:
>>>> On Dec 5, 2018, at 4:21 AM, Gert Doering <gert@space.net> wrote:
>>>>
>>>>> On Wed, Dec 05, 2018 at 04:13:47AM -0800, Joe Touch wrote:
>>>>> Then THAT is the security issue.  Not the packets that cause a broken implementation to have problems.
>>>> Can we declare folks at IETF that have no idea about operational realities
>>>> to be a security issue?
>>> As long as we can do the same for operators that blame protocols for vendor issues.
>> If a protocol cannot be implemented in a way that can be paid by real world
>> participants, it's not a vendor issue.
>>
>> Gert Doering
>>         -- NetMaster
>> -- 
>> have you enabled IPv6 on something today...?
>>
>> SpaceNet AG                      Vorstand: Sebastian v. Bomhard, Michael Emmer
>> Joseph-Dollinger-Bogen 14        Aufsichtsratsvors.: A. Grundner-Culemann
>> D-80807 Muenchen                 HRB: 136055 (AG Muenchen)
>> Tel: +49 (0)89/32356-444         USt-IdNr.: DE813185279
>> _______________________________________________
>> Tsv-art mailing list
>> Tsv-art@ietf.org
>> https://www.ietf.org/mailman/listinfo/tsv-art

v2.23.0 | Report a Bug | By Email