[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Evaluation: draft-ietf-netconf-ssh-05.txt to Proposed Standar d [I06-051127-0011]

No, as Phil Shafer just said, there's no justification for
Netconf consuming the scarce resource of a well-known port
less than 1024.  

And just asking is NOT a sufficient justification, Andy.

Cheers,
- Ira

Ira McDonald (Musician / Software Architect)
Blue Roof Music / High North Inc
PO Box 221  Grand Marais, MI  49839
phone: +1-906-494-2434
email: imcdonald@sharplabs.com

> -----Original Message-----
> From: owner-netconf@ops.ietf.org [mailto:owner-netconf@ops.ietf.org]On
> Behalf Of Andy Bierman
> Sent: Wednesday, March 15, 2006 6:31 PM
> To: Wijnen, Bert (Bert)
> Cc: Phil Shafer; 'Margaret Wasserman (E-mail)'; 'Netconf (E-mail)';
> iana-drafts@icann.org; IANA
> Subject: Re: Evaluation: draft-ietf-netconf-ssh-05.txt to Proposed
> Standar d [I06-051127-0011]
> 
> 
> Wijnen, Bert (Bert) wrote:
> > But am amswer of "it doies not matter" does not help the IANA
> > to make an assignment. We as a WG must choose. If it does not
> > matter, then I guess we're saying >1024.
> >   
> 
> Eliot did answer this -- we want a port number < 1024
> 
> > Bert
> >   
> 
> Andy
> 
> >   
> >> -----Original Message-----
> >> From: Phil Shafer [mailto:phil@juniper.net]
> >> Sent: Thursday, March 16, 2006 00:15
> >> To: Wijnen, Bert (Bert)
> >> Cc: 'Margaret Wasserman (E-mail)'; Andy Bierman (E-mail); 'Netconf
> >> (E-mail)'; iana-drafts@icann.org; IANA
> >> Subject: Re: Evaluation: draft-ietf-netconf-ssh-05.txt to Proposed
> >> Standar d [I06-051127-0011] 
> >>
> >>
> >> The only reason to have it <1024 is to keep unix users from running
> >> it as non-root.  While this is fairly weak security, it 
> does prevent
> >> untrusted users on trusted hosts (whose host-key your client likes)
> >> from starting a process that mimics the real ssh-based 
> netconf daemon
> >> and skims whatever information it can.  Then again, I guess you'd
> >> need to be root to have the private version of the host key, so
> >> it's not really an issue.
> >>
> >> So IMHO it doesn't matter.
> >>
> >> Thanks,
> >>  Phil
> >>
> >>
> >>
> >> "Wijnen, Bert (Bert)" writes:
> >>     
> >>> I was trying to find the answer to this IANA quesion,
> >>> and I cannot find it. Did we (WG) decide what we want?
> >>>
> >>> I need to know BEFORE the IESG telechat (11:30 EST) tomorrow 
> >>>       
> >> (thursday)
> >>     
> >>> if possible.
> >>>
> >>> Bert
> >>>
> >>>       
> >>>> -----Original Message-----
> >>>> From: owner-netconf@ops.ietf.org 
> >>>>         
> > [mailto:owner-netconf@ops.ietf.org]On
> >   
> >>> Behalf Of IANA
> >>> Sent: Tuesday, February 28, 2006 18:44
> >>> To: 'Wijnen, Bert (Bert)'
> >>> Cc: 'Margaret Wasserman (E-mail)'; 'Netconf (E-mail)';
> >>> iana-drafts@icann.org
> >>> Subject: RE: Evaluation: draft-ietf-netconf-ssh-05.txt to Proposed
> >>> Standard [I06-051127-0011]
> >>>
> >>>
> >>> Bert,
> >>>
> >>> I still don't see what range the port needs to go in...
> >>> User (0-1023) or system (1024-49151) range?
> >>>
> >>> Am I missing a note somewhere that give this information?
> >>>
> >>> Thanks,
> >>>
> >>> Michelle
> >>> IANA
> >>>       
> >> --
> >> to unsubscribe send a message to netconf-request@ops.ietf.org with
> >> the word 'unsubscribe' in a single line as the message text body.
> >> archive: <http://ops.ietf.org/lists/netconf/>
> >>     
> >
> >
> >   
> 
> 
> --
> to unsubscribe send a message to netconf-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://ops.ietf.org/lists/netconf/>
> 

--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>