[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Issue

To: <radiusext@ops.ietf.org>
Subject: Issue
From: "Glen Zorn \(gwz\)" <gwz@cisco.com>
Date: Wed, 8 Feb 2006 11:45:47 -0800
Cc: "Glen Zorn \(gwz\)" <gwz@cisco.com>

Description of issue: Typo, (presumably) incorrect phrasing
Submitter name: Glen Zorn
Submitter email address: gwz@cisco.com
Date first submitted: 08 Feb 06
Document: ieee-802
Comment type: E
Priority: 1
Section: 6
Rationale/Explanation of issue: Paragraph 1 says: "Since this document
describes the use of RADIUS for purposes of authentication,
authorization, and accounting in IEEE 802.1X-nabled networks, it is
vulnerable to all of the threats that are present in other RADIUS
applications. For a discussion of these  threats, see [RFC2607],
[RFC3162], [RFC3579], and [RFC3580]."  Are there threats present in
RADIUS applications?  Shouldn't we eradicate these things instead of
referencing them? ;-) 

Requested change: 
Change "IEEE 802.1X-nabled" to "IEEE 802.1X-enabled"

Re-word the paragraph to have the correct meaning; suggest "Since this
document describes the use of RADIUS for purposes of authentication,
authorization, and accounting in IEEE 802.1X-enabled networks, it is
vulnerable to the same threats as other RADIUS applications. For a
discussion of these  threats, see [RFC2607], [RFC3162], [RFC3579], and
[RFC3580]." 

~gwz

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Prev by Date: radius dynauth client/server mibs structure
Next by Date: RE: [Issue] Authorize Only usage in HTTP redirect
Previous by thread: radius dynauth client/server mibs structure
Next by thread: RADEXT Agenda for IETF65
Index(es):
- Date
- Thread