From fgont@si6networks.com  Thu May  2 06:43:10 2013
Return-Path: <fgont@si6networks.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B9BE821F851E for <opsec@ietfa.amsl.com>; Thu,  2 May 2013 06:43:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.577
X-Spam-Level: 
X-Spam-Status: No, score=-2.577 tagged_above=-999 required=5 tests=[AWL=-0.022, BAYES_00=-2.599, DATE_IN_PAST_03_06=0.044]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JPItokpzRrYJ for <opsec@ietfa.amsl.com>; Thu,  2 May 2013 06:43:10 -0700 (PDT)
Received: from web01.jbserver.net (web01.jbserver.net [IPv6:2a00:d10:2000:e::3]) by ietfa.amsl.com (Postfix) with ESMTP id 1496E21F851C for <opsec@ietf.org>; Thu,  2 May 2013 06:43:07 -0700 (PDT)
Received: from [186.134.26.236] (helo=[192.168.123.125]) by web01.jbserver.net with esmtpsa (TLSv1:DHE-RSA-CAMELLIA256-SHA:256) (Exim 4.80.1) (envelope-from <fgont@si6networks.com>) id 1UXtmX-0007y4-5f; Thu, 02 May 2013 15:42:45 +0200
Message-ID: <518228F5.2030308@si6networks.com>
Date: Thu, 02 May 2013 05:51:01 -0300
From: Fernando Gont <fgont@si6networks.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130329 Thunderbird/17.0.5
MIME-Version: 1.0
To: "'opsec@ietf.org'" <opsec@ietf.org>
X-Enigmail-Version: 1.4.6
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Subject: [OPSEC] Improvements in VPN-leakages
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 May 2013 13:43:10 -0000

Folks,

FYI, just pointed out to me. From OpenBSD 5.3 relsease page
(<http://www.openbsd.org/53.html>):

> iked(8) blocks IPv6 traffic unless there are v6 VPN flows; this is to prevent leakages as described in draft-gont-opsec-vpn-leakages. 


Nice to see impact in implementations of those that care.

Cheers,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492





From internet-drafts@ietf.org  Thu May  2 08:01:06 2013
Return-Path: <internet-drafts@ietf.org>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B20E21F8E98; Thu,  2 May 2013 08:01:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.575
X-Spam-Level: 
X-Spam-Status: No, score=-102.575 tagged_above=-999 required=5 tests=[AWL=0.025, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cHsBJF5+zG95; Thu,  2 May 2013 08:01:05 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D78FE21F8E7E; Thu,  2 May 2013 08:01:05 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 4.44.p4
Message-ID: <20130502150105.13577.71096.idtracker@ietfa.amsl.com>
Date: Thu, 02 May 2013 08:01:05 -0700
Cc: opsec@ietf.org
Subject: [OPSEC] I-D Action: draft-ietf-opsec-ipv6-implications-on-ipv4-nets-04.txt
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 May 2013 15:01:06 -0000

A New Internet-Draft is available from the on-line Internet-Drafts director=
ies.
 This draft is a work item of the Operational Security Capabilities for IP =
Network Infrastructure Working Group of the IETF.

	Title           : Security Implications of IPv6 on IPv4 Networks
	Author(s)       : Fernando Gont
                          Will (Shucheng) Liu
	Filename        : draft-ietf-opsec-ipv6-implications-on-ipv4-nets-04.txt
	Pages           : 23
	Date            : 2013-05-02

Abstract:
   This document discusses the security implications of native IPv6
   support and IPv6 transition/co-existence technologies on "IPv4-only"
   networks, and describes possible mitigations for the aforementioned
   issues.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-opsec-ipv6-implications-on-ipv4=
-nets

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-opsec-ipv6-implications-on-ipv4-nets-=
04

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-opsec-ipv6-implications-on-ip=
v4-nets-04


Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/


From prvs=68351d35a9=scott.mansfield@ericsson.com  Fri May  3 10:34:31 2013
Return-Path: <prvs=68351d35a9=scott.mansfield@ericsson.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A7FD21F86D3; Fri,  3 May 2013 10:34:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.001
X-Spam-Level: 
X-Spam-Status: No, score=0.001 tagged_above=-999 required=5 tests=[HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uvM01i0eISlR; Fri,  3 May 2013 10:34:26 -0700 (PDT)
Received: from usevmg21.ericsson.net (usevmg21.ericsson.net [198.24.6.65]) by ietfa.amsl.com (Postfix) with ESMTP id 7ED7C21F9664; Fri,  3 May 2013 10:08:26 -0700 (PDT)
X-AuditID: c6180641-b7f906d000003e3f-d7-5183eefff680
Received: from EUSAAHC005.ericsson.se (Unknown_Domain [147.117.188.87]) by usevmg21.ericsson.net (Symantec Mail Security) with SMTP id 71.58.15935.FFEE3815; Fri,  3 May 2013 19:08:16 +0200 (CEST)
Received: from EUSAAMB105.ericsson.se ([147.117.188.122]) by EUSAAHC005.ericsson.se ([147.117.188.87]) with mapi id 14.02.0328.009; Fri, 3 May 2013 13:08:11 -0400
From: Scott Mansfield <scott.mansfield@ericsson.com>
To: "saag@ietf.org" <saag@ietf.org>, "opsec@ietf.org" <opsec@ietf.org>
Thread-Topic: Liaison from SG17 on IPv6 Security Guideline
Thread-Index: Ac5IIMiS/sHDEQrxSIeSnSr9qeiU+A==
Date: Fri, 3 May 2013 17:08:10 +0000
Message-ID: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [147.117.188.134]
Content-Type: multipart/alternative; boundary="_000_EF35EE4B92789843B1DECBC0E245586427E198eusaamb105ericsso_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrALMWRmVeSWpSXmKPExsUyuXRPuC7D++ZAgyurOCw+bL3LZjGlv5PJ gcljyZKfTAGMUdw2SYklZcGZ6Xn6dgncGavutTIWPJSsaHz/hLmB8Y9YFyMnh4SAicTju+eZ IWwxiQv31rN1MXJxCAkcZZToatnNAuEsY5ToXfiWBaSKDahj667pjCC2iICbxJmn55lAbGEB U4l1f7czQ8StJFZ9esACYetJfJr1n7WLkYODRUBFouEAO0iYV8Bb4uXXfWBjGIEWfz+1BmwM s4C4xK0n85kgDhKQWLIH5jhRiZeP/7FC2MoSS57sZwEZySyQL7GoKwxipKDEyZlPWCYwCs1C MmkWQtUsJFUQJToSC3Z/YoOwtSWWLXzNDGOfOfCYCVl8ASP7KkaO0uLUstx0I8NNjMAIOCbB 5riDccEny0OM0hwsSuK8iVyNgUIC6YklqdmpqQWpRfFFpTmpxYcYmTg4QQSXVAMjm4Zebc0v 3cZ17x/9v2c78bDzGU5DwYM1IrWvSsJed3bKH3oit7O97si1a4Uns55mlC1e0nbv+obnBQ6P bgsZzr3ziu9dQHWTctvOQ25Vq9YX/Iq+//T3ljO/zboZ5y5JvsO33zn57x1zzlsHTvrqpOz6 v6Huf4Z9FW/8XsbaTLnOG7FzZ1SJKrEUZyQaajEXFScCABAv1ERTAgAA
Subject: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 May 2013 17:34:31 -0000

--_000_EF35EE4B92789843B1DECBC0E245586427E198eusaamb105ericsso_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

The ITU-T SG17 (Security) has provided a copy of the latest version of the =
draft Recommendation ITU-T X.ipv6-secguide "Technical security guideline on=
 deploying IPv6".

There is no action requested, the liaison is for information.

https://datatracker.ietf.org/liaison/1246/

Regards,
-scott.

Scott Mansfield
Ericsson Inc.
+1 724 931 9316


--_000_EF35EE4B92789843B1DECBC0E245586427E198eusaamb105ericsso_
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=
//www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
<meta name=3D"Generator" content=3D"Microsoft Word 14 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:11.0pt;
	font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{mso-style-priority:99;
	color:purple;
	text-decoration:underline;}
span.EmailStyle17
	{mso-style-type:personal-compose;
	font-family:"Calibri","sans-serif";
	color:windowtext;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-family:"Calibri","sans-serif";}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
	{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3D"EN-US" link=3D"blue" vlink=3D"purple">
<div class=3D"WordSection1">
<p class=3D"MsoNormal">The ITU-T SG17 (Security) has provided a copy of the=
 latest version of the draft Recommendation ITU-T X.ipv6-secguide &#8220;Te=
chnical security guideline on deploying IPv6&#8221;.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">There is no action requested, the liaison is for inf=
ormation.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal"><a href=3D"https://datatracker.ietf.org/liaison/1246=
/">https://datatracker.ietf.org/liaison/1246/</a><o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">Regards,<o:p></o:p></p>
<p class=3D"MsoNormal">-scott.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal">Scott Mansfield<o:p></o:p></p>
<p class=3D"MsoNormal">Ericsson Inc.<o:p></o:p></p>
<p class=3D"MsoNormal">&#43;1 724 931 9316<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
</div>
</body>
</html>

--_000_EF35EE4B92789843B1DECBC0E245586427E198eusaamb105ericsso_--

From fgont@si6networks.com  Mon May 20 20:43:38 2013
Return-Path: <fgont@si6networks.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41E0321F970A; Mon, 20 May 2013 20:43:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.524
X-Spam-Level: 
X-Spam-Status: No, score=-2.524 tagged_above=-999 required=5 tests=[AWL=0.075,  BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id va+aOk7oBOHA; Mon, 20 May 2013 20:43:37 -0700 (PDT)
Received: from web01.jbserver.net (web01.jbserver.net [IPv6:2a00:d10:2000:e::3]) by ietfa.amsl.com (Postfix) with ESMTP id 73AC321F9707; Mon, 20 May 2013 20:43:36 -0700 (PDT)
Received: from [186.134.40.103] (helo=[192.168.123.125]) by web01.jbserver.net with esmtpsa (TLSv1:DHE-RSA-CAMELLIA256-SHA:256) (Exim 4.80.1) (envelope-from <fgont@si6networks.com>) id 1UedU2-0001c9-5D; Tue, 21 May 2013 05:43:30 +0200
Message-ID: <519AD1B3.9090508@si6networks.com>
Date: Mon, 20 May 2013 22:45:23 -0300
From: Fernando Gont <fgont@si6networks.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130510 Thunderbird/17.0.6
MIME-Version: 1.0
To: Scott Mansfield <scott.mansfield@ericsson.com>
References: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se>
In-Reply-To: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se>
X-Enigmail-Version: 1.4.6
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 8bit
Cc: "opsec@ietf.org" <opsec@ietf.org>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2013 03:43:38 -0000

On 05/03/2013 02:08 PM, Scott Mansfield wrote:
> The ITU-T SG17 (Security) has provided a copy of the latest version of
> the draft Recommendation ITU-T X.ipv6-secguide “Technical security
> guideline on deploying IPv6”.
> 
> There is no action requested, the liaison is for information.
> 
> https://datatracker.ietf.org/liaison/1246/

Dumb question:

Are we expected/allowed to contribute to the corresponding document? If
so, how should such contributions happen? (i.e., where should
contributions be sent to or discussed at?).

Thanks!

Best regards,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492





From merike@doubleshotsecurity.com  Tue May 21 10:24:56 2013
Return-Path: <merike@doubleshotsecurity.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C8DC21F8EC2; Tue, 21 May 2013 10:24:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.203
X-Spam-Level: 
X-Spam-Status: No, score=-2.203 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_QP_LONG_LINE=1.396, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tSHwIQE560wc; Tue, 21 May 2013 10:24:40 -0700 (PDT)
Received: from b.mail.sonic.net (b.mail.sonic.net [64.142.19.5]) by ietfa.amsl.com (Postfix) with ESMTP id 7488C21F983A; Tue, 21 May 2013 10:24:08 -0700 (PDT)
Received: from [192.168.10.130] ([64.122.169.98]) (authenticated bits=0) by b.mail.sonic.net (8.13.8.Beta0-Sonic/8.13.7) with ESMTP id r4LHNxMr009857 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Tue, 21 May 2013 10:24:00 -0700
References: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se> <519AD1B3.9090508@si6networks.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <519AD1B3.9090508@si6networks.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Message-Id: <D827DE93-0DE4-4608-9FF5-33567521B27A@doubleshotsecurity.com>
X-Mailer: iPad Mail (10B329)
From: Merike Kaeo <merike@doubleshotsecurity.com>
Date: Tue, 21 May 2013 10:23:57 -0700
To: Fernando Gont <fgont@si6networks.com>
Cc: "opsec@ietf.org" <opsec@ietf.org>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2013 17:24:56 -0000

On May 20, 2013, at 6:45 PM, Fernando Gont <fgont@si6networks.com> wrote:

> On 05/03/2013 02:08 PM, Scott Mansfield wrote:
>> The ITU-T SG17 (Security) has provided a copy of the latest version of
>> the draft Recommendation ITU-T X.ipv6-secguide =E2=80=9CTechnical securit=
y
>> guideline on deploying IPv6=E2=80=9D.
>>=20
>> There is no action requested, the liaison is for information.
>>=20
>> https://datatracker.ietf.org/liaison/1246/
>=20
> Dumb question:
>=20
> Are we expected/allowed to contribute to the corresponding document? If
> so, how should such contributions happen? (i.e., where should
> contributions be sent to or discussed at?).
>=20
I have same question since have some edits (recommendations for edits).

- merike

> Thanks!
>=20
> Best regards,
> --=20
> Fernando Gont
> SI6 Networks
> e-mail: fgont@si6networks.com
> PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
>=20
>=20
>=20
>=20
> _______________________________________________
> OPSEC mailing list
> OPSEC@ietf.org
> https://www.ietf.org/mailman/listinfo/opsec
>=20

From manav.bhatia@alcatel-lucent.com  Tue May 21 10:36:52 2013
Return-Path: <manav.bhatia@alcatel-lucent.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D1B521F9870; Tue, 21 May 2013 10:36:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level: 
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p9DCd+XXgx2u; Tue, 21 May 2013 10:36:46 -0700 (PDT)
Received: from ihemail1.lucent.com (ihemail1.lucent.com [135.245.0.33]) by ietfa.amsl.com (Postfix) with ESMTP id 7D2A321F9679; Tue, 21 May 2013 10:36:46 -0700 (PDT)
Received: from us70uusmtp4.zam.alcatel-lucent.com (h135-5-2-66.lucent.com [135.5.2.66]) by ihemail1.lucent.com (8.13.8/IER-o) with ESMTP id r4LHadCP021159 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Tue, 21 May 2013 12:36:39 -0500 (CDT)
Received: from US70TWXCHHUB03.zam.alcatel-lucent.com (us70twxchhub03.zam.alcatel-lucent.com [135.5.2.35]) by us70uusmtp4.zam.alcatel-lucent.com (GMO) with ESMTP id r4LHacdV009339 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 21 May 2013 13:36:38 -0400
Received: from SG70YWXCHHUB04.zap.alcatel-lucent.com (135.253.2.38) by US70TWXCHHUB03.zam.alcatel-lucent.com (135.5.2.35) with Microsoft SMTP Server (TLS) id 14.2.247.3; Tue, 21 May 2013 13:36:38 -0400
Received: from SG70YWXCHMBA05.zap.alcatel-lucent.com ([169.254.5.102]) by SG70YWXCHHUB04.zap.alcatel-lucent.com ([135.253.2.38]) with mapi id 14.02.0247.003; Wed, 22 May 2013 01:36:35 +0800
From: "Bhatia, Manav (Manav)" <manav.bhatia@alcatel-lucent.com>
To: Merike Kaeo <merike@doubleshotsecurity.com>, Fernando Gont <fgont@si6networks.com>
Thread-Topic: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
Thread-Index: AQHOVkgkFn78OBlImkadqmjpXqS/epkP5nvw
Date: Tue, 21 May 2013 17:36:35 +0000
Message-ID: <20211F91F544D247976D84C5D778A4C302A089@SG70YWXCHMBA05.zap.alcatel-lucent.com>
References: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se> <519AD1B3.9090508@si6networks.com> <D827DE93-0DE4-4608-9FF5-33567521B27A@doubleshotsecurity.com>
In-Reply-To: <D827DE93-0DE4-4608-9FF5-33567521B27A@doubleshotsecurity.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [135.253.19.16]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Scanned-By: MIMEDefang 2.57 on 135.245.2.33
Cc: "opsec@ietf.org" <opsec@ietf.org>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2013 17:36:52 -0000

+1

It should at the very least offer RFC 6505 as another alternative to RFC 45=
52 (which anyways has few implementations).

Cheers, Manav

> -----Original Message-----
> From: opsec-bounces@ietf.org [mailto:opsec-bounces@ietf.org]=20
> On Behalf Of Merike Kaeo
> Sent: Tuesday, May 21, 2013 10:54 PM
> To: Fernando Gont
> Cc: opsec@ietf.org; saag@ietf.org
> Subject: Re: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
>=20
>=20
>=20
> On May 20, 2013, at 6:45 PM, Fernando Gont=20
> <fgont@si6networks.com> wrote:
>=20
> > On 05/03/2013 02:08 PM, Scott Mansfield wrote:
> >> The ITU-T SG17 (Security) has provided a copy of the=20
> latest version=20
> >> of the draft Recommendation ITU-T X.ipv6-secguide=20
> "Technical security=20
> >> guideline on deploying IPv6".
> >>=20
> >> There is no action requested, the liaison is for information.
> >>=20
> >> https://datatracker.ietf.org/liaison/1246/
> >=20
> > Dumb question:
> >=20
> > Are we expected/allowed to contribute to the corresponding=20
> document?=20
> > If so, how should such contributions happen? (i.e., where should=20
> > contributions be sent to or discussed at?).
> >=20
> I have same question since have some edits (recommendations=20
> for edits).
>=20
> - merike
>=20
> > Thanks!
> >=20
> > Best regards,
> > --
> > Fernando Gont
> > SI6 Networks
> > e-mail: fgont@si6networks.com
> > PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
> >=20
> >=20
> >=20
> >=20
> > _______________________________________________
> > OPSEC mailing list
> > OPSEC@ietf.org
> > https://www.ietf.org/mailman/listinfo/opsec
> >=20
> _______________________________________________
> OPSEC mailing list
> OPSEC@ietf.org
> https://www.ietf.org/mailman/listinfo/opsec
> =

From scott.mansfield@ericsson.com  Tue May 21 13:04:27 2013
Return-Path: <scott.mansfield@ericsson.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C777911E812E; Tue, 21 May 2013 13:04:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level: 
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cWJq+kuGCmBn; Tue, 21 May 2013 13:04:22 -0700 (PDT)
Received: from usevmg20.ericsson.net (usevmg20.ericsson.net [198.24.6.45]) by ietfa.amsl.com (Postfix) with ESMTP id A75D211E80F7; Tue, 21 May 2013 13:04:22 -0700 (PDT)
X-AuditID: c618062d-b7fb56d0000042e1-d2-519bd345f5ea
Received: from EUSAAHC005.ericsson.se (Unknown_Domain [147.117.188.87]) by usevmg20.ericsson.net (Symantec Mail Security) with SMTP id C3.0F.17121.543DB915; Tue, 21 May 2013 22:04:22 +0200 (CEST)
Received: from EUSAAMB105.ericsson.se ([147.117.188.122]) by EUSAAHC005.ericsson.se ([147.117.188.87]) with mapi id 14.02.0328.009; Tue, 21 May 2013 16:04:21 -0400
From: Scott Mansfield <scott.mansfield@ericsson.com>
To: Merike Kaeo <merike@doubleshotsecurity.com>, Fernando Gont <fgont@si6networks.com>
Thread-Topic: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
Thread-Index: Ac5IIMiS/sHDEQrxSIeSnSr9qeiU+ANxZpOAACDHcYAAAyz4sA==
Date: Tue, 21 May 2013 20:04:20 +0000
Message-ID: <EF35EE4B92789843B1DECBC0E24558642A5777@eusaamb105.ericsson.se>
References: <EF35EE4B92789843B1DECBC0E245586427E198@eusaamb105.ericsson.se> <519AD1B3.9090508@si6networks.com> <D827DE93-0DE4-4608-9FF5-33567521B27A@doubleshotsecurity.com>
In-Reply-To: <D827DE93-0DE4-4608-9FF5-33567521B27A@doubleshotsecurity.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [147.117.188.135]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrFLMWRmVeSWpSXmKPExsUyuXRPuK7b5dmBBtuni1k8WfWGzWLT24NM Fh+23mWzmNLfyeTA4jHnponHkiU/mTw+HOphD2CO4rJJSc3JLEst0rdL4MroPjGbuWCFZMWT ea/YGxivSHQxcnJICJhIzP9+gQnCFpO4cG89WxcjF4eQwFFGiRWHPjFCOMsZJb7tXcAKUsUG 1LF113RGEFtEIEJiw7SNYHFmATeJ7qZtYJOEBRwleju62LsYOYBqnCT+fwiAKHeSOLn8AAuI zSKgKjHvzDU2EJtXwFtic9NOdohdGxglbrX1gxVxCnhJnF+9AMxmBLru+6k1TBC7xCVuPZkP dbWAxJI955khbFGJl4//sULYyhLf5zxiAbmBWUBTYv0ufYhWRYkp3Q/ZIfYKSpyc+YRlAqPY LCRTZyF0zELSMQtJxwJGllWMHKXFqWW56UYGmxiB8XNMgk13B+Oel5aHGKU5WJTEeVu1pwYK CaQnlqRmp6YWpBbFF5XmpBYfYmTi4JRqYDSpub7o+Voeje4nGmkL/O/vOLV1hvxs5mC3q9G6 WTMtz12Y+i9kavDaF9e2LPA8fyXAR/m2rH5SyhbmqHvG/ryL/3FrOU3kqzn+OUPeJ3Dnr4Lm Na/DHXgnu+sUTo5z2RxmeSTkFUOh1RqpjfKvH1XecXkt0//294IpfBFvI6q/2smWcE3prVZi Kc5INNRiLipOBACqj7O6bQIAAA==
Cc: "opsec@ietf.org" <opsec@ietf.org>, "saag@ietf.org" <saag@ietf.org>
Subject: Re: [OPSEC] Liaison from SG17 on IPv6 Security Guideline
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2013 20:04:27 -0000
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