[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-ietf-opsec-logging-caps-03

To: opsec@ops.ietf.org
Subject: draft-ietf-opsec-logging-caps-03
From: Ron Bonica <rbonica@juniper.net>
Date: Thu, 28 Jun 2007 16:55:25 -0400
User-agent: Mozilla Thunderbird 1.0.2 (Windows/20050317)

Folks,

The following are a few comments from AD review:

- In Section 2.16, all sensitive configuration information needs to be
protected. This includes thinks like cryptographic keys as well as
passwords.

- Do we need another requirement that says that it should be difficult,
if not impossible, to alter the local copy of a log?

- How should the system behave if some components spews 1,000,000
instances of the same log message in a 5 second period?

- How should the system behave if some component spews 1,000,000
different messages in a 5 second period.

- How should the system behave when all of the space for local logging
is exhausted. Drop oldest messages? Tail drop?

- We will probably have to decide if this doc is BCP or INFO.

                                     Ron

Follow-Ups:
- Re: draft-ietf-opsec-logging-caps-03
  - From: "Tom Petch" <nwnetworks@dial.pipex.com>
- Re: draft-ietf-opsec-logging-caps-03
  - From: "George Jones" <eludom@gmail.com>
- RE: draft-ietf-opsec-logging-caps-03
  - From: "patrick cain" <pcain@coopercain.com>
- Re: draft-ietf-opsec-logging-caps-03
  - From: Roland Dobbins <rdobbins@cisco.com>
- Re: draft-ietf-opsec-logging-caps-03
  - From: Danny McPherson <danny@tcb.net>

Prev by Date: Re: Last Call: draft-ietf-opsec-filter-caps (Filtering and Rate Limiting Capabilities for IP Network Infrastructure) to BCP
Next by Date: Re: draft-ietf-opsec-logging-caps-03
Previous by thread: Re: Last Call: draft-ietf-opsec-filter-caps (Filtering and Rate Limiti ng Capabilities for IP Network Infrastructure) to BCP
Next by thread: Re: draft-ietf-opsec-logging-caps-03
Index(es):
- Date
- Thread