[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Questions on modified Extended Attribute format?

To: "'Alan DeKok'" <aland@nitros9.org>
Subject: RE: Questions on modified Extended Attribute format?
From: "Glen Zorn" <glenzorn@comcast.net>
Date: Fri, 28 Dec 2007 08:35:11 -0800
Cc: <radiusext@ops.ietf.org>
In-reply-to: <4774B67D.7040603@nitros9.org>
References: <003401c83a92$db6ed850$924c88f0$@net> <47729084.8060206@nitros9.org> <005d01c847e8$20c81f30$62585d90$@net> <4772A741.40303@nitros9.org> <007e01c847fa$cbae1a00$630a4e00$@net> <47732E9D.4030803@nitros9.org> <00b401c848e0$2f0e9c60$8d2bd520$@net> <4774B67D.7040603@nitros9.org>

...

> [gwz] I don't know where the "from scratch" comes from; there is a format
> defined in
>
http://www.ietf.org/internet-drafts/draft-ietf-radext-extended-attributes-00
> .txt.  I am suggesting adding a single octet to the format which

  Opens it up for change again, after a long discussion, where everyone
had agreed that the format in -00 was acceptable.

> Interesting definition of "incompatible".  If that is in fact the standard
> to be met we may as well just fold up our tents and go home since there is
> _no_ change that could be made which would have "*zero* impact on
> implementations that don't understand".

  It's not about changes, it's about *compatible* changes to the
*standard* attributes.  Let me re-phrase:

  - standard RADIUS attributes in a VSA MUST be compatible with existing
implementations that only understand standard RADIUS attributes

  Put that way, it's obviously impossible.  Since RADIUS has no
capability negotiation, there's no way for the NAS to tell the server it
is capable of that new functionality.

  Therefore, the proposed change is incompatible with existing deployments.

[gwz] 
As I said, put that way or any other way you like, ANY change is
incompatible with existing deployments.  If one were to add a new "standard"
attribute (in the old format or the proposed VSA-like format or any other)
it would be incompatible with existing deployments.  The whole idea of
extended attributes REQUIRES that existing deployment be updated, no matter
how they are formatted.
[/gwz]

>   If we can't put standard attributes into the new format, then we
> should just pick a better format, and ideally one that's been deployed.
>  The WiMAX format (plus grouping) seems to fit that definition fairly
well.
> 
> [gwz]
> Can you tell us what it looks like?
> [/gwz]

  The format in -00, which achieved WG consensus after long and
protracted discussion.
[gwz] 
Actually, while the timeframe was long, the discussion wasn't: I've only
received a couple of comments on it in the last months.  It _did_ take an
inordinate amount of time to reject the 'Diameterization' of RADIUS,
though...
[/gwz]

  Alan DeKok.


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Questions on modified Extended Attribute format?
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: Questions on modified Extended Attribute format?
  - From: Alan DeKok <aland@nitros9.org>
- RE: Questions on modified Extended Attribute format?
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: Questions on modified Extended Attribute format?
  - From: Alan DeKok <aland@nitros9.org>
- RE: Questions on modified Extended Attribute format?
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: Questions on modified Extended Attribute format?
  - From: Alan DeKok <aland@nitros9.org>
- RE: Questions on modified Extended Attribute format?
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: Questions on modified Extended Attribute format?
  - From: Alan DeKok <aland@nitros9.org>

Prev by Date: Re: RADEXT WG last call on RADIUS Attributes for Filtering and Redirection
Next by Date: Re: new format
Previous by thread: Re: Questions on modified Extended Attribute format?
Next by thread: Re: Questions on modified Extended Attribute format?
Index(es):
- Date
- Thread