[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fwd: New version of security overview submitted

To: v6ops@ops.ietf.org
Subject: Fwd: New version of security overview submitted
From: Fred Baker <fred@cisco.com>
Date: Thu, 6 Oct 2005 13:52:03 -0700
Authentication-results: imail.cisco.com; header.From=fred@cisco.com; dkim=pass ( message from cisco.com verified; );
Dkim-signature: a=rsa-sha1; q=dns; l=2160; t=1128632598; x=1129064798; c=nowsp; s=nebraska; h=Subject:From:Date:Content-Type:Content-Transfer-Encoding; d=cisco.com; i=fred@cisco.com; z=Subject:Fwd=3A=20New=20version=20of=20security=20overview=20submitted| From:Fred=20Baker=20<fred@cisco.com>| Date:Thu,=206=20Oct=202005=2013=3A52=3A03=20-0700| Content-Type:text/plain=3B=20charset=3DUS-ASCII=3B=20delsp=3Dyes=3B=20format=3Dflowed| Content-Transfer-Encoding:7bit; b=EB8HSG3eqHpOa6d4Q6ksTgfcH6c2EdskD+u2bUAi6cJ7rnCb6B0x3I8RJ/f/n1pM4vTkLV5e X4txeLCVRQ90CGWJOuPLlVYhuyCRB/v17Mygbb/W15mSjCIwDpyjO0xtgeQ3FcqiANtuqVUxjUI YUZB82nWi23ql1lmaBxzLD+k=
References: <434543C1.2050005@dial.pipex.com>

Folks:

I don't think we need another WGLC on this, but I would like to hearfrom those that commented that their concerns have or have not beenmet, and in the latter case suggested text.


Begin forwarded message:

From: Elwyn Davies <elwynd@dial.pipex.com>
Date: October 6, 2005 8:33:21 AM PDT
To: Fred Baker <fred@cisco.com>, Kurt Erik Lindqvist<kurtis@kurtis.pp.se>
Subject: New version of security overview submitted


Hi.
I just submitted the new version of the security overviewaddressing the second last call comments (mostly from Tim Chown).
I'll send a message to the list when it appears.
I don't know if you feel this needs yet another last call... onesection (4.1) got rewritten as a result of Tim's comments and thereare a number of other changes.
Regards,
Elwyn

The list of changes is:
02 -> 03
Couple of pieces of spelling converted from UK to US fulfil/tunnelling
Several instances of 'unrecognized' appear to have vanished(probably while changing them from
unrecognised in the previous edit.
s2.1.4: s/an  /an unrecognized / (2 instances in next to last para)
s2.1.8.3: s/items  /items unrecognized /
s2.1.6: 2nd para: s/to for any future/for any future/
s2.1.11: s/IPv4 addresses/IPv4 link-local addresses/
s2.1.11.1: promoted to s2.1.12, renumber rest of s2.1 accordingly
s2.1.11.1: added note on possible DoS attacks due to maliciousdeprecation of prefixes with and
without IPv6 Router Selection option. (Tim Chown)
Added new s2.1.13: Documenting security issues with Host-RouterLoad Sharing (Tim Chown)
Old s2.1.12 (Mobile IP) is now 2.1.14.
s2.2: last sentence s/and/ and/
s3.3: Added extra paragraph and figure 1 at end suggesting routingof traffic through IPv6 and
IPv4 firewalls with tunnel endpoint between them (Tim Chown)
s4.1: completely rewritten
s4.3: added additional example of DHCP servers for guessable addresses
s4.4: Added comment emphasising that multiaddressing is the normnot the exception (Tim Chown)s4.4: Added note that privacy addresses can only be disabled byusing full stateful DHCPv6 Tim Chown)
s4.5:s/in might/it might/
s4.7: Added reference to IPv6 Node Requirements draft (Tim Chown)
s4.6: s/stable/mature/ in first para (Tim Chown)
App A: Added comment that 3041 addresses can only be used behind6to4 router if host is not to be reachable from elsewhere. (Tim Chown)App B: Added reference to Network Architecture Protection draft(Tim Chown)App B.3: Added note that many users woudl like a static /48 so theycan host services. (Tim Chown)

Follow-Ups:
- Re: Fwd: New version of security overview submitted
  - From: Elwyn Davies <elwynd@dial.pipex.com>

Prev by Date: RE: Requirements for IP-in-IP Tunnel MTU Assurance
Next by Date: Re: Requirements for IP-in-IP Tunnel MTU Assurance
Previous by thread: I-D ACTION:draft-ietf-v6ops-security-overview-03.txt
Next by thread: Re: Fwd: New version of security overview submitted
Index(es):
- Date
- Thread