Re: [Isms] d) was dublin isms meeting minutes

To: Ira McDonald <blueroofmusic at gmail.com>
Subject: Re: [Isms] d) was dublin isms meeting minutes
From: Juergen Schoenwaelder <j.schoenwaelder at jacobs-university.de>
Date: Wed, 3 Sep 2008 11:43:05 +0200
Cc: isms at ietf.org
Delivered-to: ietfarch-isms-web-archive at core3.amsl.com
Delivered-to: isms at core3.amsl.com
In-reply-to: <e395be80809021356h32176c8bqbbecbb6215bbc59c at mail.gmail.com>
List-archive: <http://www.ietf.org/pipermail/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
Mail-followup-to: Ira McDonald <blueroofmusic at gmail.com>, "tom.petch" <cfinss at dial.pipex.com>, isms at ietf.org
References: <20080829134415.GA1084 at elstar.local> <01f201c90d08$f587ffc0$0601a8c0 at allison> <20080902202434.GA8042 at elstar.local> <e395be80809021356h32176c8bqbbecbb6215bbc59c at mail.gmail.com>
Reply-to: j.schoenwaelder at jacobs-university.de
Sender: isms-bounces at ietf.org
User-agent: Mutt/1.5.18 (2008-05-17)

On Tue, Sep 02, 2008 at 04:56:28PM -0400, Ira McDonald wrote:

> RFC 5198 compliant normalization (NFC) of the security
> name presented by SSHTM should be REQUIRED.

I think the SNMPv3 specifications never talk about normalization of
SnmpAdminStrings. So the issue is of much larger scope and to tackle
this, someone needs to write a separate document about UTF-8 string
normalization in the whole SNMP framework. But this then is clearly
not in the scope of ISMS.

All ISMS could do is to require normalization for TSM and SSHTM but
that would not really solve the general problem as long as all other
configuration tables and in particular VACM are agnostic to string
normalization.

Perhaps someone should write a best practices like document that
SnmpAdminString values really should be normalized (but that causes
nasty length changes) or that SnmpAdminString values should be
normalized before any comparisons are done.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1, 28759 Bremen, Germany
Fax:   +49 421 200 3103         <http://www.jacobs-university.de/>
_______________________________________________
Isms mailing list
Isms at ietf.org
https://www.ietf.org/mailman/listinfo/isms

Follow-Ups:
- Re: [Isms] d) was dublin isms meeting minutes
  - From: Ira McDonald

References:
- [Isms] dublin isms meeting minutes
  - From: Juergen Schoenwaelder
- [Isms] d) was dublin isms meeting minutes
  - From: tom.petch
- Re: [Isms] d) was dublin isms meeting minutes
  - From: Juergen Schoenwaelder
- Re: [Isms] d) was dublin isms meeting minutes
  - From: Ira McDonald

Prev by Date: Re: [Isms] d) was dublin isms meeting minutes
Next by Date: Re: [Isms] d) was dublin isms meeting minutes
Previous by thread: Re: [Isms] d) was dublin isms meeting minutes
Next by thread: Re: [Isms] d) was dublin isms meeting minutes
Index(es):
- Date
- Thread

Re: [Isms] d) was dublin isms meeting minutes

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.