[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt

To: "Randy Presuhn" <rpresuhn@dorothy.bmc.com>, <dhcwg@ietf.org>, <mibs@ops.ietf.org>, <snmpv3@lists.tislabs.com>
Subject: RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt
From: "Andrea Westerinen" <andreaw@cisco.com>
Date: Wed, 25 Sep 2002 23:55:16 -0700
In-reply-to: <200209241844.LAA20555@dorothy.bmc.com>

An updated version of ASF (2.0) is currently in DMTF company review that
"adds security protocols to RMCP messages."  So, the message below is not
totally correct.  This version of the spec will be available shortly after
company review ends (Oct 15th).

Andrea

-----Original Message-----
From: dhcwg-admin@ietf.org [mailto:dhcwg-admin@ietf.org]On Behalf Of
Randy Presuhn
Sent: Tuesday, September 24, 2002 11:45 AM
To: dhcwg@ietf.org; mibs@ops.ietf.org; snmpv3@lists.tislabs.com
Subject: RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt


Hi -

> Message-ID:
<A451D5E6F15FD211BABC0008C7FAD7BC0EFFE01F@nl0006exch003u.nl.lucent.com>
> From: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>
> To: Mark Bakke <mbakke@cisco.com>
> Cc: "'dhcwg@ietf.org'" <dhcwg@ietf.org>,
>         "snmpv3@lists. tislabs. com (E-mail)" <snmpv3@lists.tislabs.com>,
>         mibs@ops.ietf.org
> Subject: RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt
> Date: Tue, 24 Sep 2002 11:16:07 +0200
...
> > > First question would be: is it a generic problem that people face?
> > Yes.  There are increasingly more solutions that allow hosts,
> > racks of servers, embedded devices, etc. to be booted from
> > the network.  When this fails, the host's normal configuration
> > info (particularly the SNMP notification list) is not available,
> > so there's no good way to tell a management station about it.
> >
> > I assume that most networks would want to use SNMP for this,
> > but syslog would work as well.
> >
>
> Mark's answer is just one answer that seem to support a YES answer
> Any others?
...

There has been some other work in the area of getting out
notifications of "pre-OS" systems, e.g.,
http://www.dmtf.org/standards/documents/ASF/DSP0114.pdf

However, this work does *not* address security, other than
to discourage implementors from providing protocol-level
security and to instead rely on "deployment schemes and
firewalls" (!).

Could information delivered via DHCP be used to accomplish a
"kick start" of the secrets, similar to that in RFC 2786?

 ------------------------------------------------------
 Randy Presuhn          BMC Software, Inc.  SJC-1.3141
 randy_presuhn@bmc.com  2141 North First Street
 Tel: +1 408 546-1006   San Josi, California 95131  USA
 ------------------------------------------------------
 My opinions and BMC's are independent variables.
 ------------------------------------------------------
_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

References:
- RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt
  - From: Randy Presuhn <rpresuhn@dorothy.bmc.com>

Prev by Date: VACM - noaccess(6) error status
Next by Date: RE: VACM - noaccess(6) error status
Previous by thread: RE: [dhcwg] RE: draft-bakke-dhc-snmp-trap-00.txt
Next by thread: VACM - noaccess(6) error status
Index(es):
- Date
- Thread