[Syslog] RE: Request for Reviewers - draft-ietf-syslog-transport-tls-03.tx t

Tue, 10 Oct 2006 02:24:45 -0700 


-----Original Message-----
From: Wijnen, Bert (Bert) 
Sent: Monday, October 09, 2006 16:29
To: [EMAIL PROTECTED]
Subject: RE: Request for Reviewers - draft-ietf-syslog-protocol-17.txt


David Harrington (co-chair of the Syslog WG) specifically asked me 
for a review of documents in WG Last Call.

I am not subscribed to the SYSLOG WG mailing list, so pls copy
me explicitly on any reactions that you want me to see.

I am not a security expert, and this WG is in the Security Area, so 
I am assuming that the security aspects are well reviewed by the
respected WG members or colleagues in the SEC area.

I also have a common/generic question:

  The ISMS and NETCONF WGs have defined as manadatory to implement
  SNMP-over-SSH and NETCONF-over-SSH.

  I think it would be really really good/best if the SYSLOG WG would
  also define a mandatory to implement SYSLOG-over-SSH, so that 
  operators can use one and the same security infrastructure for
  the operational management and monitoring of their systems.

In other words, I find it a pitty that the WG charted work-item:

  - A document will be produced that requires a secure transport
    for the delivery of syslog messages.

Did not result in a mapping over SSH.

Bert
----- draft-ietf-syslog-transport-tls-03.txt

I am not sure I understand what this means (sect 4, last para):

   The security service is also applicable to BSD Syslog defined in
   RFC3164 [7].  But, it is not ensured that the protocol specification
   defined in this document is applicable to BSD Syslog.

I thought the porimary goal was to secure messages from
draft-ietf-syslog-protocol-17 but I don;t see that mentioned in sect 4.

Bert

----------- original review message:
> >
> http://www.ietf.org/internet-drafts/draft-ietf-syslog-protocol-17.txt
> > > 
> > > Transmission of syslog messages over UDP
> > > 
> >
> http://www.ietf.org/internet-drafts/draft-ietf-syslog-transport-udp-07
> > > .txt
> > > 
> > > TLS Transport Mapping for SYSLOG
> > > 
> >
> http://www.ietf.org/internet-drafts/draft-ietf-syslog-transport-tls-03
> > > .txt
> > > 
> > > Syslog Management Information Base
> > > 
> >
> http://www.ietf.org/internet-drafts/draft-ietf-syslog-device-mib-09.tx
> > > t
> > > 
> > > Signed syslog Messages
> > > http://www.ietf.org/internet-drafts/draft-ietf-syslog-sign-18.txt
> > > (We expect this document to be updated this week.)
> > > 
> > > David Harrington
> > > [EMAIL PROTECTED] 
> > > [EMAIL PROTECTED]
> > > [EMAIL PROTECTED]
> > > 
> > 
> 

_______________________________________________
Syslog mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/syslog

Reply via email to