Re: interception proxies

From: Keith Moore <moore(_at_)cs(_dot_)utk(_dot_)edu>

...
agree entirely.  but for this to work there have to be folks within
the WG who are willing to raise a fuss.


That's a good point, but there is another question that must always be
asked.  When there is no hope of influencing something, then it can be
important to not participate.  Participation even in opposition inevitably
supports the official position.  30 years ago the word "co-opted" was used
to describe the problem.

My impression from the two WG documents is that in the WG consensus is
that HTTP interception proxies are at least tolerable and often necessary
and good, and by extension probably also for SMTP and everything else.

Yes, I noticed that "W" in "WREC" doesn't stand for "mail".  It's also
clear that intercepting or proxying are at most aspects of the "RE" and
the "C", although I don't see how that is relevant to whether the WG is
committed to interception proxies.  Draft-cerpa-necp-02.txt must be read
as advocating them, and not only for HTTP or whatever is meant by "Web."
Yes, I realize that draft wasn't a product of the WREC WG.  The two WREC
documents cannot be read as deprecating interception proxies and can be
read as advocating them by what they fail to say.


    ....

] From: Joe Touch <touch(_at_)ISI(_dot_)EDU>

] FWIW, there _was_ discussion in WREC of the hazards of transparent web
] caching. I dug up an old e-mail, describing the hazards of transparent
] web caching which I summarized at the time, when WREC was forming.
]
] A copy of the note, admittedly very rough (just an outline, and a very
] rough one at that) is at:
]
]       http://www.isi.edu/touch/pubs/hazards-outline.txt

I really like "in effect, it is a use of IP spoofing to do replay attacks."

(Why a 3rd document instead of added to Problems?)

] I would be glad to host further discussion on the WREC maillist as to
] how to augment the list and flesh it out to a full I-D before the next
] IETF, if there is sufficient interest.

Do you two think that either the IETF or the WREC working group might
agree with the thrust of that outline?  It sounds as if your answer is
"yes" and that my sense of WREC, IETF, and maybe industry sentiment is
wrong.


Vernon Schryver    vjs(_at_)rhyolite(_dot_)com

<Prev in Thread]	Current Thread	[Next in Thread>
Re: interception proxies, (continued) Re: interception proxies, Valdis . Kletnieks RE: interception proxies, BookIII, Robert Re: interception proxies, Joe Touch Re: interception proxies, Vernon Schryver Re: interception proxies, Keith Moore Re: interception proxies, Theodore Y. Ts'o Re: interception proxies, Vijay Gill Re: interception proxies, Marc Horowitz Re: interception proxies, Vijay Gill Re: interception proxies, John Martin Re: interception proxies, Vernon Schryver <= Re: interception proxies, Keith Moore Re: interception proxies, Joe Touch Re: interception proxies, Keith Moore Re: interception proxies, Joe Touch Re: interception proxies, Charles Lynn Re: interception proxies, J. Noel Chiappa Re: interception proxies, Vernon Schryver Re: interception proxies, Salvador Vidal Re: interception proxies, Dick St.Peters Re: interception proxies, Keith Moore