Hi Med, I am not aware of which data nodes are sensitive in this module. If you find any, please point them out.
But I am aware that the extended modules (e.g., examples in the appendix) may include sensitive data. Especially, the "data-source" node. So I added a new paragraph [1] to clarify this. Do you think it is enough? [1]: https://github.com/ietf-wg-alto/draft-ietf-alto-oam-yang/commit/5a2a40db5ebe45a3e16a836f8cae38891f4b5bce Thanks, Jensen On Mon, Mar 20, 2023 at 10:06 PM Med <notificati...@github.com> wrote: > I'm afraid that the following text is to be revised: > > None of the readable data nodes in these YANG module are considered > sensitive or vulnerable in network environments. The NACM > "default-deny-all" extension has not been set for any data nodes defined in > these module. > > None of the writable data nodes in these YANG modules are considered > sensitive or vulnerable in network environments. The NACM > "default-deny-write" extension has not been set for any data nodes defined > in these modules. > > There are several sensitive data node that should be listed. Access to > some data by non-authorized parties may reveal internal topologies/etc. > > There should be also a note about the "http-listen" use. > > — > Reply to this email directly, view it on GitHub > <https://github.com/ietf-wg-alto/draft-ietf-alto-oam-yang/issues/33>, or > unsubscribe > <https://github.com/notifications/unsubscribe-auth/ABCCA5OI7SW6DOU4PSF52DTW5BP7TANCNFSM6AAAAAAWBELDRQ> > . > You are receiving this because you are subscribed to this thread.Message > ID: <ietf-wg-alto/draft-ietf-alto-oam-yang/issues/3...@github.com> >
_______________________________________________ alto mailing list alto@ietf.org https://www.ietf.org/mailman/listinfo/alto
