From rfc-editor@rfc-editor.org Fri Apr 1 07:50:53 2011 Return-Path: X-Original-To: opsec@core3.amsl.com Delivered-To: opsec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BD67728B23E; Fri, 1 Apr 2011 07:50:53 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.568 X-Spam-Level: X-Spam-Status: No, score=-102.568 tagged_above=-999 required=5 tests=[AWL=0.031, BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oE0zX7+8-v6f; Fri, 1 Apr 2011 07:50:52 -0700 (PDT) Received: from email.elon.edu (efe2.elon.edu [152.33.5.1]) by core3.amsl.com (Postfix) with ESMTP id 8A6F43A6875; Fri, 1 Apr 2011 07:50:51 -0700 (PDT) Received: from EV01.elon.edu ([10.17.1.100]) by email.elon.edu with Microsoft SMTPSVC(6.0.3790.3959); Fri, 1 Apr 2011 10:52:32 -0400 Received: from mail pickup service by EV01.elon.edu with Microsoft SMTPSVC; Fri, 1 Apr 2011 10:52:31 -0400 Received: from email.elon.edu ([10.17.1.143]) by EV01.elon.edu with Microsoft SMTPSVC(6.0.3790.3959); Wed, 30 Mar 2011 18:39:30 -0400 Received: from emf1.elon.edu ([10.17.20.20]) by email.elon.edu with Microsoft SMTPSVC(6.0.3790.3959); Wed, 30 Mar 2011 18:39:31 -0400 X-ASG-Debug-ID: 1301524771-0314c70eea41a60001-3cnnEG Received: from mail-yw0-f52.google.com (mail-yw0-f52.google.com [209.85.213.52]) by emf1.elon.edu with ESMTP id RI9wm3MgrmhtG6kg for ; Wed, 30 Mar 2011 18:39:31 -0400 (EDT) X-Barracuda-Envelope-From: ietf-announce-bounces@ietf.org X-Barracuda-Apparent-Source-IP: 209.85.213.52 Received: by ywa1 with SMTP id 1sf1450632ywa.25 for ; Wed, 30 Mar 2011 15:39:30 -0700 (PDT) Received: by 10.151.27.6 with SMTP id e6mr305739ybj.41.1301524770276; Wed, 30 Mar 2011 15:39:30 -0700 (PDT) X-Barracuda-BBL-IP: nil Received: by 10.151.27.6 with SMTP id e6mr305738ybj.41.1301524770247; Wed, 30 Mar 2011 15:39:30 -0700 (PDT) Received: from mail.ietf.org (mail.ietf.org [64.170.98.32]) by mx.google.com with ESMTP id q26si14224038yba.18.2011.03.30.15.39.30; Wed, 30 Mar 2011 15:39:30 -0700 (PDT) Received-SPF: pass (google.com: domain of ietf-announce-bounces@ietf.org designates 64.170.98.32 as permitted sender) client-ip=64.170.98.32; Authentication-Results: mx.google.com; spf=pass (google.com: domain of ietf-announce-bounces@ietf.org designates 64.170.98.32 as permitted sender) smtp.mail=ietf-announce-bounces@ietf.org Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 917F228C1E9; Wed, 30 Mar 2011 15:33:32 -0700 (PDT) X-Original-To: ietf-announce@core3.amsl.com Delivered-To: ietf-announce@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id AA00628C1B2; Wed, 30 Mar 2011 15:33:30 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FWmF2heIPMO6; Wed, 30 Mar 2011 15:33:29 -0700 (PDT) Received: from rfc-editor.org (rfc-editor.org [IPv6:2001:1890:1112:1::2f]) by core3.amsl.com (Postfix) with ESMTP id 4ABEC28C191; Wed, 30 Mar 2011 15:33:29 -0700 (PDT) Received: by rfc-editor.org (Postfix, from userid 30) id AC962E0773; Wed, 30 Mar 2011 15:34:58 -0700 (PDT) To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org From: rfc-editor@rfc-editor.org X-ASG-Orig-Subj: RFC 6192 on Protecting the Router Control Plane Message-Id: <20110330223458.AC962E0773@rfc-editor.org> Date: Wed, 30 Mar 2011 15:34:58 -0700 (PDT) X-BeenThere: ietf-announce@ietf.org X-Mailman-Version: 2.1.9 Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ietf-announce-bounces@ietf.org Errors-To: ietf-announce-bounces@ietf.org X-Barracuda-Connect: mail-yw0-f52.google.com[209.85.213.52] X-Barracuda-Start-Time: 1301524771 X-Barracuda-URL: http://spam.elon.edu:8000/cgi-mod/mark.cgi X-Virus-Scanned: by bsmtpd at elon.edu X-Barracuda-Spam-Score: 0.00 X-Barracuda-Spam-Status: No, SCORE=0.00 using global scores of TAG_LEVEL=2.5 QUARANTINE_LEVEL=3.0 KILL_LEVEL=5.0 tests=NO_REAL_NAME X-Barracuda-Spam-Report: Code version 3.2, rules version 3.2.2.59446 Rule breakdown below pts rule name description ---- ---------------------- -------------------------------------------------- 0.00 NO_REAL_NAME From: does not include a real name X-OriginalArrivalTime: 30 Mar 2011 22:39:31.0386 (UTC) FILETIME=[55E479A0:01CBEF2B] Cc: opsec@ietf.org, rfc-editor@rfc-editor.org Subject: [OPSEC] RFC 6192 on Protecting the Router Control Plane X-BeenThere: opsec@ietf.org List-Id: opsec wg mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Apr 2011 14:50:53 -0000 A new Request for Comments is now available in online RFC libraries. RFC 6192 Title: Protecting the Router Control Plane Author: D. Dugal, C. Pignataro, R. Dunn Status: Informational Stream: IETF Date: March 2011 Mailbox: dave@juniper.net, cpignata@cisco.com, rodunn@cisco.com Pages: 25 Characters: 49422 Updates/Obsoletes/SeeAlso: None I-D Tag: draft-ietf-opsec-protect-control-plane-06.txt URL: http://www.rfc-editor.org/rfc/rfc6192.txt This memo provides a method for protecting a router's control plane from undesired or malicious traffic. In this approach, all legitimate router control plane traffic is identified. Once legitimate traffic has been identified, a filter is deployed in the router's forwarding plane. That filter prevents traffic not specifically identified as legitimate from reaching the router's control plane, or rate-limits such traffic to an acceptable level. Note that the filters described in this memo are applied only to traffic that is destined for the router, and not to all traffic that is passing through the router. This document is not an Internet Standards Track specification; it is published for informational purposes. This document is a product of the Operational Security Capabilities for IP Network Infrastructure Working Group of the IETF. INFORMATIONAL: This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. This announcement is sent to the IETF-Announce and rfc-dist lists. To subscribe or unsubscribe, see http://www.ietf.org/mailman/listinfo/ietf-announce http://mailman.rfc-editor.org/mailman/listinfo/rfc-dist For searching the RFC series, see http://www.rfc-editor.org/rfcsearch.html. For downloading RFCs, see http://www.rfc-editor.org/rfc.html. Requests for special distribution should be addressed to either the author of the RFC in question, or to rfc-editor@rfc-editor.org. Unless specifically noted otherwise on the RFC itself, all RFCs are for unlimited distribution. The RFC Editor Team Association Management Solutions, LLC _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www.ietf.org/mailman/listinfo/ietf-announce From Internet-Drafts@ietf.org Fri Apr 8 14:30:03 2011 Return-Path: X-Original-To: opsec@core3.amsl.com Delivered-To: opsec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7D8883A69C8; Fri, 8 Apr 2011 14:30:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.588 X-Spam-Level: X-Spam-Status: No, score=-102.588 tagged_above=-999 required=5 tests=[AWL=0.011, BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qOULOdMOffYx; Fri, 8 Apr 2011 14:30:02 -0700 (PDT) Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4CF073A69D1; Fri, 8 Apr 2011 14:30:02 -0700 (PDT) MIME-Version: 1.0 Content-Type: Multipart/Mixed; Boundary="NextPart" From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 3.16 Message-ID: <20110408213002.29302.9250.idtracker@localhost> Date: Fri, 08 Apr 2011 14:30:02 -0700 Cc: opsec@ietf.org Subject: [OPSEC] I-D Action:draft-ietf-opsec-ip-security-07.txt X-BeenThere: opsec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: opsec wg mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Apr 2011 21:30:03 -0000 --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Operational Security Capabilities for IP Network Infrastructure Working Group of the IETF. Title : Security Assessment of the Internet Protocol version 4 Author(s) : F. Gont Filename : draft-ietf-opsec-ip-security-07.txt Pages : 78 Date : 2011-04-08 This document contains a security assessment of the IETF specifications of the Internet Protocol version 4, and of a number of mechanisms and policies in use by popular IPv4 implementations. It is based on the results of a project carried out by the UK's Centre for the Protection of National Infrastructure (CPNI). A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-opsec-ip-security-07.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-ietf-opsec-ip-security-07.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2011-04-08142721.I-D@ietf.org> --NextPart-- From iesg-secretary@ietf.org Mon Apr 18 07:57:51 2011 Return-Path: X-Original-To: opsec@ietfc.amsl.com Delivered-To: opsec@ietfc.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 9EFDBE068E; Mon, 18 Apr 2011 07:57:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.534 X-Spam-Level: X-Spam-Status: No, score=-102.534 tagged_above=-999 required=5 tests=[AWL=0.065, BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RDo9F305Tz-j; Mon, 18 Apr 2011 07:57:51 -0700 (PDT) Received: from ietfc.amsl.com (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 53BA5E07CE; Mon, 18 Apr 2011 07:57:50 -0700 (PDT) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: The IESG To: IETF-Announce X-Test-IDTracker: no X-IETF-IDTracker: 3.52 Message-ID: <20110418145750.9745.50862.idtracker@ietfc.amsl.com> Date: Mon, 18 Apr 2011 07:57:50 -0700 Cc: opsec mailing list , opsec chair , RFC Editor Subject: [OPSEC] Document Action: 'Security Assessment of the Internet Protocol version 4' to Informational RFC (draft-ietf-opsec-ip-security-07.txt) X-BeenThere: opsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: opsec wg mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Apr 2011 14:57:51 -0000 The IESG has approved the following document: - 'Security Assessment of the Internet Protocol version 4' (draft-ietf-opsec-ip-security-07.txt) as an Informational RFC This document is the product of the Operational Security Capabilities for IP Network Infrastructure Working Group. The IESG contact persons are Ron Bonica and Dan Romascanu. A URL of this Internet Draft is: http://datatracker.ietf.org/doc/draft-ietf-opsec-ip-security/ Technical Summary This document contains a security assessment of the IETF specifications of the Internet Protocol version 4, and of a number of mechanisms and policies in use by popular IPv4 implementations. It is based on the results of a project carried out by the UK's Centre for the Protection of National Infrastructure (CPNI). Working Group Summary Working group consensus required the settlement of two major points of contention: Was this document in scope for the opsec working group charter, and were the participants sufficiently knowledgeable to provide input? What status should be pursued by the document authors? Regarding to former, it was the opinion of the area director and WG consensus that the document was compatible with the working group charter. capabilities and limitations of the ipv4 protocol fall within the scope of operational security capabilities work. Regarding the second question, consensus that informational status was the appropriate approach for this document. The number of documents potentially touched by this document is considerable. It is not necessary in the process of making recommendations on the basis of operational experience to update the protocol specification so long as those recommendations do not result in divergence from the protocol specification that would result in non-inter-operable operation. That said, operationaly some such as source routing can be expected not to work as a product of current practice. Document Quality Numerous implementations of the IPv4 protocol exist. The recommendations contained within this document have accumulated over the course of close to 30 years worth of operational experience. The information contained in this document has not been collected in one IETF document before, doing so has produced a document that is quite challenging to review from a scale perspective. We have solicited and received a number of reviews high quality reviews and we believe that prior publication of previous versions of document also aided considerably with development and review. Personnel Joel Jaegli is shepherd for this draft. From warren@kumari.net Mon Apr 18 10:22:08 2011 Return-Path: X-Original-To: opsec@ietfc.amsl.com Delivered-To: opsec@ietfc.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 3A06FE06F8 for ; Mon, 18 Apr 2011 10:22:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.599 X-Spam-Level: X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8BImAyqpozvB for ; Mon, 18 Apr 2011 10:22:07 -0700 (PDT) Received: from vimes.kumari.net (vimes.kumari.net [198.186.192.250]) by ietfc.amsl.com (Postfix) with ESMTP id 48BA4E06E4 for ; Mon, 18 Apr 2011 10:22:07 -0700 (PDT) Received: from dot.her.corp.google.com (unknown [74.202.225.33]) by vimes.kumari.net (Postfix) with ESMTPSA id A6FA21B4127C for ; Mon, 18 Apr 2011 13:22:05 -0400 (EDT) From: Warren Kumari Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Date: Mon, 18 Apr 2011 13:22:05 -0400 References: <20110418145750.9745.50862.idtracker@ietfc.amsl.com> To: opsec@ietf.org Message-Id: <40345108-F0C5-4514-BDC0-06964B466A6E@kumari.net> Mime-Version: 1.0 (Apple Message framework v1084) X-Mailer: Apple Mail (2.1084) Subject: [OPSEC] Fwd: Document Action: 'Security Assessment of the Internet Protocol version 4' to Informational RFC (draft-ietf-opsec-ip-security-07.txt) X-BeenThere: opsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: opsec wg mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Apr 2011 17:22:08 -0000 I wanted to take this opportunity to thank Fernando Gont for his hard = work on this... W Begin forwarded message: > From: The IESG > Date: April 18, 2011 10:57:50 AM EDT > To: IETF-Announce > Cc: opsec mailing list , opsec chair = , RFC Editor > Subject: [OPSEC] Document Action: 'Security Assessment of the Internet = Protocol version 4' to Informational RFC = (draft-ietf-opsec-ip-security-07.txt) >=20 > The IESG has approved the following document: > - 'Security Assessment of the Internet Protocol version 4' > (draft-ietf-opsec-ip-security-07.txt) as an Informational RFC >=20 > This document is the product of the Operational Security Capabilities = for > IP Network Infrastructure Working Group. >=20 > The IESG contact persons are Ron Bonica and Dan Romascanu. >=20 > A URL of this Internet Draft is: > http://datatracker.ietf.org/doc/draft-ietf-opsec-ip-security/ >=20 >=20 >=20 >=20 > Technical Summary >=20 > This document contains a security assessment of the IETF > specifications of the Internet Protocol version 4, and of a number of > mechanisms and policies in use by popular IPv4 implementations. It > is based on the results of a project carried out by the UK's Centre > for the Protection of National Infrastructure (CPNI). >=20 > Working Group Summary >=20 > Working group consensus required the settlement of two major points of > contention: >=20 > Was this document in scope for the opsec working group charter, and = were > the participants sufficiently knowledgeable to provide input? >=20 > What status should be pursued by the document authors? >=20 > Regarding to former, it was the opinion of the area director and WG > consensus that the document was compatible with the working group > charter. capabilities and limitations of the ipv4 protocol fall within = the > scope of operational security capabilities work. >=20 > Regarding the second question, consensus that informational status was > the appropriate approach for this document. The number of documents > potentially touched by this document is considerable. It is not = necessary > in the process of making recommendations on the basis of operational > experience to update the protocol specification so long as those > recommendations do not result in divergence from the protocol > specification that would result in non-inter-operable operation. That > said, operationaly some such as source routing can be expected not to = work > as a product of current practice. >=20 > Document Quality >=20 > Numerous implementations of the IPv4 protocol exist. The = recommendations > contained within this document have accumulated over the course of = close > to 30 years worth of operational experience. The information contained = in > this document has not been collected in one IETF document before, = doing so > has produced a document that is quite challenging to review from a = scale > perspective. We have solicited and received a number of reviews high > quality reviews and we believe that prior publication of previous = versions > of document also aided considerably with development and review. >=20 >=20 >=20 > Personnel >=20 > Joel Jaegli is shepherd for this draft. >=20 > _______________________________________________ > OPSEC mailing list > OPSEC@ietf.org > https://www.ietf.org/mailman/listinfo/opsec >=20 From fernando.gont.netbook.win@gmail.com Tue Apr 26 15:52:53 2011 Return-Path: X-Original-To: opsec@ietfa.amsl.com Delivered-To: opsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97F8CE076F for ; Tue, 26 Apr 2011 15:52:53 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.599 X-Spam-Level: X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1] Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3qhhSec7BgRt for ; Tue, 26 Apr 2011 15:52:53 -0700 (PDT) Received: from mail-gy0-f172.google.com (mail-gy0-f172.google.com [209.85.160.172]) by ietfa.amsl.com (Postfix) with ESMTP id CF6A0E066F for ; Tue, 26 Apr 2011 15:52:52 -0700 (PDT) Received: by gyf3 with SMTP id 3so494835gyf.31 for ; Tue, 26 Apr 2011 15:52:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:sender:message-id:date:from:user-agent :mime-version:to:cc:subject:x-enigmail-version:openpgp:content-type :content-transfer-encoding; bh=noECN9M9o5CiIUY5rtJE6tMDtR1vESw2ayq15R7mq4I=; b=ZPk0/INChuHwA/3xcCLtyHcKXlQ+KFtlZL5xrKEg7JWYmBbRKkCs9KNBA/uni79ukF mGrbNNByKZr+32dS29CeRBBcB8UPaI9i7sM056YuO3xMtst7byvyf1LtEW2j7aE9DIAS VpuN8BFQdDfaj1ST9BFFdBCvQT+jsmlLP0huA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :x-enigmail-version:openpgp:content-type:content-transfer-encoding; b=xBKmnENqWJH9tvoVdEdDe5x/W9t7qFTJt11CLJNK8WnrCR7RoveF4fWeNtMI+gRi3h 2ppVK/HhaxBN30vX1jCHUaW6/Mz/NyZR/UyNIR96dlXLKxOd7oj0WzpnT4xtyA5HKX2Z 5EfPf2ORZeYT2qMrOnqDC0D+YD5S2K2dVLdz8= Received: by 10.101.39.17 with SMTP id r17mr883452anj.150.1303858371931; Tue, 26 Apr 2011 15:52:51 -0700 (PDT) Received: from [192.168.1.113] (cianita.frh.utn.edu.ar [170.210.17.149]) by mx.google.com with ESMTPS id t16sm192909anm.16.2011.04.26.15.52.45 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 26 Apr 2011 15:52:51 -0700 (PDT) Sender: Fernando Gont Message-ID: <4DB74CBD.2050003@gont.com.ar> Date: Tue, 26 Apr 2011 19:52:45 -0300 From: Fernando Gont User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.2.8) Gecko/20100802 Thunderbird/3.1.2 MIME-Version: 1.0 To: "'opsec@ietf.org'" X-Enigmail-Version: 1.1.1 OpenPGP: id=D076FFF1 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Subject: [OPSEC] Fwd: New Version Notification for draft-gont-opsec-ip-options-filtering-01 X-BeenThere: opsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: opsec wg mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Apr 2011 22:52:53 -0000 Folks, We have published a revision of our I-D "IP Options Filtering Recommendations". It is available at: http://tools.ietf.org/html/draft-gont-opsec-ip-options-filtering-01 Publication of this document had been suggested at the Hiroshima IETF. Version -00 had expired a while ago, and I decided to invest some time and bring this document back to life. This time with much help from Ran Atkinson, who is co-authoring this latest rev. Any comments will be welcome. Thanks! Best regards, Fernando -------- Original Message -------- Subject: New Version Notification for draft-gont-opsec-ip-options-filtering-01 Date: Tue, 26 Apr 2011 15:31:13 -0700 (PDT) From: IETF I-D Submission Tool To: fernando@gont.com.ar CC: rja.lists@gmail.com A new version of I-D, draft-gont-opsec-ip-options-filtering-01.txt has been successfully submitted by Fernando Gont and posted to the IETF repository. Filename: draft-gont-opsec-ip-options-filtering Revision: 01 Title: IP Options Filtering Recommendations Creation_date: 2011-04-27 WG ID: Independent Submission Number_of_pages: 26 Abstract: This document document provides advice on the filtering of packets based on the IP options they contain. Additionally, it discusses the operational and interoperability implications of such filtering. The IETF Secretariat.