[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5

To: "Romascanu, Dan \(Dan\)" <dromasca@avaya.com>
Subject: Re: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
From: Andy Bierman <ietf@andybierman.com>
Date: Sun, 27 Nov 2005 06:54:11 -0800
Cc: "C. M. Heard" <heard@pobox.com>, "Mreview (E-mail)" <mreview@ops.ietf.org>
In-reply-to: <AAB4B3D3CF0F454F98272CBE187FDE2F0990CE97@is0004avexu1.global.avaya.com>
References: <AAB4B3D3CF0F454F98272CBE187FDE2F0990CE97@is0004avexu1.global.avaya.com>
User-agent: Mozilla Thunderbird 1.0.7 (Windows/20050923)

Romascanu, Dan (Dan) wrote:

-----Original Message-----
From: owner-mreview@ops.ietf.org[mailto:owner-mreview@ops.ietf.org] On Behalf Of C. M. Heard
 o draft-ietf-isis-wg-mib-24.txt
Management Information Base for IS-IS (Proposed
Standard) - 20 of 22
   Token: Alex Zinin
I did the MIB Doctor review for this doc and I am satisfiedwith it. I see come comments from a GenArt in the tracker.I agree with those on Section 2 and disagree with those onSection 7. The reason I disagree is that complying with thecomment would require listing all writeable objects in theMIB module, and it should be sufficient to say "all writeableattributes have the potential to disrupt network operationsif improperly modified" as the doc now does.
I am a little surprised by this comment from Mike, and I think that I
would disagree.
We are telling explicitly MIB writers at
http://www.ops.ietf.org/mib-security.html:

-- if you have any read-write and/or read-create objects, please
-- describe their specific sensitivity or vulnerability.
-- RFC 2669 has a very good example.

I am opposed to replace this by another blanket generic text. Different
objects bear different threats in disrupting network operations if
improperly modified, and I believe that it is important for the MIB
documents to specifically and explicitly list those.


Me too!
I have often wondered if we could have some sort of coherent security
threat ranking
guidelines, but it's too subjective (like the Fujita Scale for MIB
objects :-)
A knob that tells RMON how often to garbage collect useless data is hardly
going to impact the network in the same manner as the knob that disables
BGP.


The problem with blanket boilerplate text is that sooner or later everybody
knows it doesn't really apply, and they ignore ALL the text, even when
you're telling
them about the BGP knob.

Regards,

Dan


Andy

Follow-Ups:
- Re: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
  - From: "C. M. Heard" <heard@pobox.com>

References:
- Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
  - From: "Romascanu, Dan \(Dan\)" <dromasca@avaya.com>

Prev by Date: OIDs longer than 128 subids for InetAddress indexes
Next by Date: Re: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
Previous by thread: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
Next by thread: Re: Security Considerations for writeable objects (was: RE: Pls review documents on IESG Agenda for December 1, 200)5
Index(es):
- Date
- Thread