[Syslog] RE: Request for Reviewers - draft-ietf-syslog-transport-tls-03.tx t
"Wijnen, Bert (Bert)" <bwijnen@lucent.com> Tue, 10 October 2006 09:23 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GXDpx-0003QT-6m; Tue, 10 Oct 2006 05:23:45 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GXDpv-0003KR-G5 for syslog@ietf.org; Tue, 10 Oct 2006 05:23:43 -0400
Received: from ihemail3.lucent.com ([135.245.0.37]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GXDpu-0003CJ-6c for syslog@ietf.org; Tue, 10 Oct 2006 05:23:43 -0400
Received: from nl0006exch001h.wins.lucent.com (h135-85-76-62.lucent.com [135.85.76.62]) by ihemail3.lucent.com (8.13.6/IER-o) with ESMTP id k9A9NZSn019140; Tue, 10 Oct 2006 04:23:36 -0500 (CDT)
Received: by nl0006exch001h.nl.lucent.com with Internet Mail Service (5.5.2657.72) id <R9BLM532>; Tue, 10 Oct 2006 11:23:35 +0200
Message-ID: <7D5D48D2CAA3D84C813F5B154F43B1550AD316A5@nl0006exch001u.nl.lucent.com>
From: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>
To: syslog@ietf.org
Date: Tue, 10 Oct 2006 11:23:34 +0200
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2657.72)
Content-Type: text/plain
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 31247fb3be228bb596db9127becad0bc
Cc: "Dan Romascanu (E-mail)" <dromasca@avaya.com>
Subject: [Syslog] RE: Request for Reviewers - draft-ietf-syslog-transport-tls-03.tx t
X-BeenThere: syslog@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Security Issues in Network Event Logging <syslog.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/syslog>, <mailto:syslog-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/syslog>
List-Post: <mailto:syslog@lists.ietf.org>
List-Help: <mailto:syslog-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/syslog>, <mailto:syslog-request@lists.ietf.org?subject=subscribe>
Errors-To: syslog-bounces@lists.ietf.org
-----Original Message----- From: Wijnen, Bert (Bert) Sent: Monday, October 09, 2006 16:29 To: syslog@ietf.org Subject: RE: Request for Reviewers - draft-ietf-syslog-protocol-17.txt David Harrington (co-chair of the Syslog WG) specifically asked me for a review of documents in WG Last Call. I am not subscribed to the SYSLOG WG mailing list, so pls copy me explicitly on any reactions that you want me to see. I am not a security expert, and this WG is in the Security Area, so I am assuming that the security aspects are well reviewed by the respected WG members or colleagues in the SEC area. I also have a common/generic question: The ISMS and NETCONF WGs have defined as manadatory to implement SNMP-over-SSH and NETCONF-over-SSH. I think it would be really really good/best if the SYSLOG WG would also define a mandatory to implement SYSLOG-over-SSH, so that operators can use one and the same security infrastructure for the operational management and monitoring of their systems. In other words, I find it a pitty that the WG charted work-item: - A document will be produced that requires a secure transport for the delivery of syslog messages. Did not result in a mapping over SSH. Bert ----- draft-ietf-syslog-transport-tls-03.txt I am not sure I understand what this means (sect 4, last para): The security service is also applicable to BSD Syslog defined in RFC3164 [7]. But, it is not ensured that the protocol specification defined in this document is applicable to BSD Syslog. I thought the porimary goal was to secure messages from draft-ietf-syslog-protocol-17 but I don;t see that mentioned in sect 4. Bert ----------- original review message: > > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-protocol-17.txt > > > > > > Transmission of syslog messages over UDP > > > > > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-transport-udp-07 > > > .txt > > > > > > TLS Transport Mapping for SYSLOG > > > > > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-transport-tls-03 > > > .txt > > > > > > Syslog Management Information Base > > > > > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-device-mib-09.tx > > > t > > > > > > Signed syslog Messages > > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-sign-18.txt > > > (We expect this document to be updated this week.) > > > > > > David Harrington > > > dharrington@huawei.com > > > dbharrington@comcast.net > > > ietfdbh@comcast.net > > > > > > _______________________________________________ Syslog mailing list Syslog@lists.ietf.org https://www1.ietf.org/mailman/listinfo/syslog
- [Syslog] RE: Request for Reviewers - draft-ietf-s… Wijnen, Bert (Bert)
- syslog over ssh - was: [Syslog] RE: Request for R… Chris Lonvick