IETF Logo Mail Archive

Re: [v6ops] I-D Action: draft-ietf-6man-grand-01 - additional security concerns

Ted Lemon <mellon@fugue.com> Fri, 31 July 2020 17:23 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 976F13A0BAA for <v6ops@ietfa.amsl.com>; Fri, 31 Jul 2020 10:23:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tf0vcIdS51Yt for <v6ops@ietfa.amsl.com>; Fri, 31 Jul 2020 10:23:39 -0700 (PDT)
Received: from mail-qk1-x729.google.com (mail-qk1-x729.google.com [IPv6:2607:f8b0:4864:20::729]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AF013A0C89 for <v6ops@ietf.org>; Fri, 31 Jul 2020 10:23:17 -0700 (PDT)
Received: by mail-qk1-x729.google.com with SMTP id l64so22662452qkb.8 for <v6ops@ietf.org>; Fri, 31 Jul 2020 10:23:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=J2Nxe0CGSwOnb/iLof+JdHMkIM4+RKywsefb04zvlL8=; b=dNGE2REol4rLfJAiI6Fy84xOzXimyrxlrPUf7z5I/p3u2unQwDMxXZ2NtEk5AIJYQe Go9dKcF3QV1w+y4cKjqOyUCvBf6L/tXUva4DC4RsFJeMaaa/I+L7erW9B9yWA14sftjE PjvPyo9nVlIReZ08AJvqRl4GIPQlJ6pV/qfTTdhNM36d5czmnOcI41B3/5REPNi9NZet 0L5dGRvpwOqGoI+SMCBEtLJUyBXU4s439dsYTMweTVtyoXqzK41FruA8GXN7YBu57hi3 73uOuk+7Rx/nGW6Z0WVNNwRi7FoP3rJUqJ0UKd+qEq2Xc2mz/kDwQEQxUGlTMLvFVWSM fDNw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=J2Nxe0CGSwOnb/iLof+JdHMkIM4+RKywsefb04zvlL8=; b=FymipEu7/RFhy/1nnP26haLR5FxRtpp4np5OLXGIaLn8/4IUXZRiIdjz6sZg6fri1Q 0NfFmm54OYN4m0MJGw4s7XY1QHtVqeNv2jkVvPlredvNp7fJpLx01RmFojUEhjShHCJ0 dPxAzveZqvybhFGt6rPG12gHz3kY4FbkpZjyU/9CXw4Vcq4O2404otQJS1BqoSX6I4N/ Gk8eZKyae/busgm6/obctqZDlBuhdW1Im33SJUQu4AJ6JviWakEO/h9CY/Tun9osv7nE RiLCIF6wUB6Sji5wEQxP7CV3jdSClnaxDLf6kLG7vFmwAzDjHRkgJmTpoNrDsRxx6uR0 LGtQ==
X-Gm-Message-State: AOAM533bv/1R3dENg8eOIUkAaFzDMSbXAWywKfy7LDUC6AWZy5rDvWsG /V8z/lEHt0IrCZNbnSIC9bD+wA==
X-Google-Smtp-Source: ABdhPJycogseB/N/cDoZNE2zs36oXaKjiw924YLdo+l/Ve9RzXWUfGMoQLmEFR42JgfI63G1gBZoEw==
X-Received: by 2002:a37:a543:: with SMTP id o64mr5152632qke.177.1596216196664; Fri, 31 Jul 2020 10:23:16 -0700 (PDT)
Received: from ?IPv6:2601:18b:300:36ee:1d5e:d83c:760:89f9? ([2601:18b:300:36ee:1d5e:d83c:760:89f9]) by smtp.gmail.com with ESMTPSA id w32sm8437347qtw.66.2020.07.31.10.23.15 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 31 Jul 2020 10:23:16 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <80FADCA7-8CB3-486F-A679-B747413831D6@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_175E221D-9683-48AC-B6FF-BF6C47847CD0"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\))
Date: Fri, 31 Jul 2020 13:23:14 -0400
In-Reply-To: <4f29ab2dd1a0467791d9304d85369f75@huawei.com>
Cc: Tony Finch <dot@dotat.at>, Owen DeLong <owen@delong.com>, "Pascal Thubert (pthubert)" <pthubert=40cisco.com@dmarc.ietf.org>, v6ops list <v6ops@ietf.org>, 6man <ipv6@ietf.org>
To: Vasilenko Eduard <vasilenko.eduard@huawei.com>
References: <96fa6d80137241dd9b57fcd871c8a897@huawei.com> <CAFU7BARePzdeU5DFgoOWyrF0xZCj67_xkC2t8vMN2nH0d8aUig@mail.gmail.com> <37e2a7110f6b423eba0303811913f533@huawei.com> <CAFU7BATiD8RkiWXjrxGuAJU-BUwRQCErYZivUPZ-Mc_up_qGxQ@mail.gmail.com> <aebc46c9b813477b9ae0db0ef33e7bd9@huawei.com> <CAO42Z2yL7+GbO6QRaNzFYoBXLF-JZ2NfwgTTt2zerKhJLwt2Lw@mail.gmail.com> <3C1ECB6F-E667-4200-964F-AB233A0A56E9@cisco.com> <91D98D51-4045-4331-A711-8387ECE73400@fugue.com> <F56A89D4-0DA3-4A9B-ADC1-FC51ECAB193B@delong.com> <alpine.DEB.2.20.2007311707380.16320@grey.csi.cam.ac.uk> <4f29ab2dd1a0467791d9304d85369f75@huawei.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/6K3CL3fi7q7zQE324l-OxyjD7tw>
Subject: Re: [v6ops] I-D Action: draft-ietf-6man-grand-01 - additional security concerns
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 31 Jul 2020 17:23:41 -0000

On Jul 31, 2020, at 1:20 PM, Vasilenko Eduard <vasilenko.eduard@huawei.com> wrote:
> (2) Only by separate admin configuration on router, then it is operational practice. No need for standardization.

I think I explained why it was worth standardizing from my perspective. Perhaps you disagree with that perspective, but you haven’t said why.   The way you say this makes it sound like you think there’s a downside to standardizing.  Can you explain what that downside is?

v2.23.0 | Report a Bug | By Email