[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?

To: radiusext@ops.ietf.org
Subject: Re: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
From: Alan DeKok <aland@deployingradius.com>
Date: Mon, 21 Feb 2011 10:33:49 +0100
Cc: peterd@iea-software.com
In-reply-to: <064.b5fbc75965f33629034d4be3708706fb@tools.ietf.org>
References: <064.b5fbc75965f33629034d4be3708706fb@tools.ietf.org>
User-agent: Thunderbird 2.0.0.24 (Macintosh/20100228)

radext issue tracker wrote:
> #65: Multiple dtls sessions in a tuple?
> 
>  Section 4.1 does not provide guidance regarding what to do when there is a
>  new session established against a tuple having an existing session.
> 
>  Can it maintain multiple sessions and broadcast any subsequent datagrams
>  or does it automatically trigger discard of the previous session(s)?

  Session initiation packets have no security or authentication, and can
this be spoofed.  I think that the new packet should be discarded.

  Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
  - From: Peter Deacon <peterd@iea-software.com>

References:
- [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
  - From: "radext issue tracker" <trac@tools.ietf.org>

Prev by Date: Re: [radext] RDTLS #64 (new): 4.1 source port inclusion in the tracking table
Next by Date: Re: [radext] RDTLS #67 (new): RADIUS vs RDTLS disambiguation (TLS Alert)
Previous by thread: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
Next by thread: Re: [radext] RDTLS #65 (new): Multiple dtls sessions in a tuple?
Index(es):
- Date
- Thread