Session Description Protocol (SDP) Source Filters
draft-ietf-mmusic-sdp-srcfilter-10
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2012-08-22
|
10 | (System) | post-migration administrative database adjustment to the No Objection position for Bert Wijnen |
2012-08-22
|
10 | (System) | post-migration administrative database adjustment to the No Objection position for Bill Fenner |
2012-08-22
|
10 | (System) | post-migration administrative database adjustment to the No Objection position for Allison Mankin |
2012-08-22
|
10 | (System) | post-migration administrative database adjustment to the No Objection position for Brian Carpenter |
2005-10-11
|
10 | Amy Vezza | State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza |
2005-10-04
|
10 | Amy Vezza | IESG state changed to Approved-announcement sent |
2005-10-04
|
10 | Amy Vezza | IESG has approved the document |
2005-10-04
|
10 | Amy Vezza | Closed "Approve" ballot |
2005-10-04
|
10 | Amy Vezza | State Changes to Approved-announcement to be sent from IESG Evaluation::AD Followup by Amy Vezza |
2005-09-23
|
10 | Bill Fenner | [Ballot Position Update] Position for Bill Fenner has been changed to No Objection from Discuss by Bill Fenner |
2005-09-22
|
10 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-10.txt |
2005-09-08
|
10 | Bert Wijnen | [Ballot Position Update] Position for Bert Wijnen has been changed to No Objection from Discuss by Bert Wijnen |
2005-07-27
|
10 | Bill Fenner | [Ballot discuss] [updated for -09] src-list used to say "addr is as defined in [SDP]."; now it doesn't say at all where "addr" comes from. … [Ballot discuss] [updated for -09] src-list used to say "addr is as defined in [SDP]."; now it doesn't say at all where "addr" comes from. dest-address might want to include extn-addr to allow the same kind of extensions as [SDP]? Alternately, it could be "*" / connection-address? (Otherwise, if a connection-address extension is used in the m= line, you may not be able to match it in the filter). [Revisiting this, it looks like the current definition doesn't permit IPv4 multicast addresses, which I thought was one of the main points of srcfilter -- making it even more likely that '"*" / connection-address' is actually what you mean here] The second paragraph in Appendix A talks about 'The "connection-address" value in each source filter field', but it's not clear which value that is - is this "dest-address", maybe? |
2005-06-16
|
09 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-09.txt |
2005-06-15
|
10 | Brian Carpenter | [Ballot comment] Inconsistency noted by Harald: I do not understand this (3.1): An SDP description MUST NOT contain more than one session-level "source-filter" … [Ballot comment] Inconsistency noted by Harald: I do not understand this (3.1): An SDP description MUST NOT contain more than one session-level "source-filter" attribute, nor more than one media-level "source-filter" attribute for the same medium. in conjunction with this (3.2.4): c=IN IP4 224.2.1.1/127/3 a=source-filter: incl IN IP4 224.2.1.1 192.168.9.10 a=source-filter: incl IN IP4 224.2.1.3 192.168.9.42 Isn't this > 1 source-filter attribute at session level? |
2005-06-15
|
10 | Brian Carpenter | [Ballot Position Update] Position for Brian Carpenter has been changed to No Objection from Discuss by Brian Carpenter |
2005-06-14
|
10 | Bill Fenner | [Ballot discuss] [updated for -08] src-list used to say "addr is as defined in [SDP]."; now it doesn't say at all where "addr" comes from. … [Ballot discuss] [updated for -08] src-list used to say "addr is as defined in [SDP]."; now it doesn't say at all where "addr" comes from. dest-address might want to include extn-addr to allow the same kind of extensions as [SDP]? Alternately, it could be "*" / connection-address? (Otherwise, if a connection-address extension is used in the m= line, you may not be able to match it in the filter). [Revisiting this, it looks like the current definition doesn't permit IPv4 multicast addresses, which I thought was one of the main points of srcfilter -- making it even more likely that '"*" / connection-address' is actually what you mean here] The second paragraph in Appendix A talks about 'The "connection-address" value in each source filter field', but it's not clear which value that is - is this "dest-address", maybe? |
2005-06-14
|
08 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-08.txt |
2005-06-13
|
10 | Allison Mankin | [Ballot Position Update] Position for Allison Mankin has been changed to No Objection from Discuss by Allison Mankin |
2005-06-13
|
10 | Allison Mankin | [Ballot comment] Addressed my concern for forged exclusions by: From Ross Finlayson: - Section 5 (security considerations) discusses the general importance of needing to … [Ballot comment] Addressed my concern for forged exclusions by: From Ross Finlayson: - Section 5 (security considerations) discusses the general importance of needing to ensure the integrity of the addresses mentioned in SDP "source-filter" attributes (of which a "excl" address is just one case). |
2005-06-09
|
10 | (System) | Sub state has been changed to AD Follow up from New Id Needed |
2005-06-09
|
07 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-07.txt |
2005-06-03
|
10 | Brian Carpenter | [Ballot discuss] Picking up Harald's DISCUSS Mainly, the spec will not work through existing NAT ALGs https://datatracker.ietf.org/cgi-bin/idtracker.cgi?loginid=43&command=view_comment&id=25107 |
2005-06-03
|
10 | Brian Carpenter | [Ballot Position Update] New position, Discuss, has been recorded for Brian Carpenter by Brian Carpenter |
2004-09-03
|
10 | (System) | Removed from agenda for telechat - 2004-09-02 |
2004-09-02
|
10 | Amy Vezza | State Changes to IESG Evaluation::Revised ID Needed from IESG Evaluation by Amy Vezza |
2004-09-02
|
10 | Allison Mankin | [Ballot discuss] This document does not provide descriptoin of the risks of a forged excl in the SDP - the user could have a desired … [Ballot discuss] This document does not provide descriptoin of the risks of a forged excl in the SDP - the user could have a desired source blocked out by the forger - needs to describe this risk and require integrity protection when excl is used. |
2004-09-02
|
10 | Thomas Narten | [Ballot Position Update] Position for Thomas Narten has been changed to No Objection from Undefined by Thomas Narten |
2004-09-02
|
10 | Thomas Narten | [Ballot Position Update] New position, Undefined, has been recorded for Thomas Narten by Thomas Narten |
2004-09-02
|
10 | Harald Alvestrand | [Ballot discuss] Sigh. I really hate to approve documents that contain MUSTs that are impossible to implement. Consider the following two pieces of texts: … [Ballot discuss] Sigh. I really hate to approve documents that contain MUSTs that are impossible to implement. Consider the following two pieces of texts: SDP does not define a protocol, but only the syntax to describe a multimedia session with sufficient information to discover and participate in that session. Session descriptions may be sent using any number of existing application protocols for transport (e.g., SAP, SIP, RTSP, email, HTTP, etc.). Note that the unicast source addresses specified by this attribute are those that are seen by a receiver. If source addresses undergo translation en route from the original sender to the receiver - e.g., due to NAT (Network Address Translation) or some tunneling mechanism - then the SDP "source-filter" attribute - as presented to the receiver - MUST be translated accordingly. To which I can only say.... "dream on". If the document says something like: "... then the receiver has to use a modified SDP description that uses local knowledge to figure out what the local representation of the address presented in the SDP "source-filter" attribute is" then it's OK. But the text reads like "NATs have to go muck with SDP even if it's inside email", and I don't want to mandate that. I do not understand this (3.1): An SDP description MUST NOT contain more than one session-level "source-filter" attribute, nor more than one media-level "source-filter" attribute for the same medium. in conjunction with this (3.2.4): c=IN IP4 224.2.1.1/127/3 a=source-filter: incl IN IP4 224.2.1.1 192.168.9.10 a=source-filter: incl IN IP4 224.2.1.3 192.168.9.42 Isn't this > 1 source-filter attribute at session level? |
2004-09-02
|
10 | Harald Alvestrand | [Ballot Position Update] Position for Harald Alvestrand has been changed to Discuss from Undefined by Harald Alvestrand |
2004-09-02
|
10 | Harald Alvestrand | [Ballot Position Update] New position, Undefined, has been recorded for Harald Alvestrand by Harald Alvestrand |
2004-09-02
|
10 | Bert Wijnen | [Ballot discuss] I believe that the IPv4 and IPv6 addresses (used as examples) in this document are not from the range of example addresses as … |
2004-09-02
|
10 | Bert Wijnen | [Ballot Position Update] Position for Bert Wijnen has been changed to Discuss from Undefined by Bert Wijnen |
2004-09-02
|
10 | Bert Wijnen | [Ballot comment] In the references section: [UTF-8] Yergeau, F., "UTF-8, a transformation format of Unicode and … |
2004-09-02
|
10 | Allison Mankin | [Ballot discuss] Further to Steve's Discuss: neither this document nor RFC 3376 (IGMPv3) protects against forged exclusions, which could result in desired traffic being blocked … [Ballot discuss] Further to Steve's Discuss: neither this document nor RFC 3376 (IGMPv3) protects against forged exclusions, which could result in desired traffic being blocked from the user. IGMPv3 can protect against forged filters if the end user can use the IPSec AH provided for its other security capabilities. I mention this to forestall a view that IGMPv3 would be a broken link in the security chain, so it would not be worth preventing forgery of SDP filters. If excl remains, it should have a strong applicability statements usage for SSM. The document needs to discuss the risks, and describe a security method. |
2004-09-02
|
10 | Bert Wijnen | [Ballot Position Update] New position, Undefined, has been recorded for Bert Wijnen by Bert Wijnen |
2004-09-02
|
10 | Allison Mankin | [Ballot Position Update] Position for Allison Mankin has been changed to Discuss from Undefined by Allison Mankin |
2004-09-02
|
10 | Allison Mankin | [Ballot Position Update] New position, Undefined, has been recorded for Allison Mankin by Allison Mankin |
2004-09-02
|
10 | Margaret Cullen | [Ballot Position Update] New position, No Objection, has been recorded for Margaret Wasserman by Margaret Wasserman |
2004-09-02
|
10 | Bill Fenner | [Ballot discuss] The ABNF doesn't specify spaces between elements, e.g. source-filter = "source-filter" ":" filter-mode filter-spec maps to, e.g., source-filter:inclINIPv4224.2.0.1128.118.5.4 I don't know … [Ballot discuss] The ABNF doesn't specify spaces between elements, e.g. source-filter = "source-filter" ":" filter-mode filter-spec maps to, e.g., source-filter:inclINIPv4224.2.0.1128.118.5.4 I don't know if you want to use SP (exactly one space) or 1*SP (one or more spaces) but you need to use seperators. src-list says "addr is as defined in [SDP]." [SDP] says it's March 2003; I assume that this is actually a reference to draft-ietf-mmusic-sdp-new-19.txt (August 2004), which does not define "addr". I suspect you may want "unicast-address". dest-address might want to include extn-addr to allow the same kind of extensions as [SDP]? Alternately, it could be "*" / connection-address? |
2004-09-02
|
10 | Bill Fenner | [Ballot Position Update] New position, Discuss, has been recorded for Bill Fenner by Bill Fenner |
2004-09-02
|
10 | Alex Zinin | [Ballot Position Update] New position, No Objection, has been recorded for Alex Zinin by Alex Zinin |
2004-09-01
|
10 | Steven Bellovin | [Ballot discuss] RFC 2827 should be cited instead of [CA-96.21] There is no motivation provided for the "excl" feature. Either motivation should be provided or … [Ballot discuss] RFC 2827 should be cited instead of [CA-96.21] There is no motivation provided for the "excl" feature. Either motivation should be provided or the feature should be removed. Beyond that, the security considerations section should discuss the risks of an unauthenticated mechanism --- IGMP -- that tells a router to block packets for a given source/dest pair. |
2004-09-01
|
10 | Amy Vezza | [Ballot Position Update] New position, Discuss, has been recorded for Steve Bellovin by Amy Vezza |
2004-09-01
|
10 | David Kessens | [Ballot Position Update] New position, No Objection, has been recorded for David Kessens by David Kessens |
2004-09-01
|
10 | Russ Housley | [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley by Russ Housley |
2004-08-30
|
10 | Ted Hardie | [Ballot comment] Reading through the document it seemed like it would be possible to have an address based filter that applied to one or more … [Ballot comment] Reading through the document it seemed like it would be possible to have an address based filter that applied to one or more of the c= addresses and a second FQDN-based filter that applied to all of them, e.g.: c=IN IP4 224.2.1.1/127/3 a=source-filter: incl IN IP4 224.2.1.1 192.168.9.10 a=source-filter: incl IN * channel-1.example.com src-1.example.com An example of it might be useful if the draft will be revised for other reasons. |
2004-08-30
|
10 | Ted Hardie | [Ballot Position Update] New position, No Objection, has been recorded for Ted Hardie by Ted Hardie |
2004-08-30
|
10 | Scott Hollenbeck | [Ballot Position Update] New position, No Objection, has been recorded for Scott Hollenbeck by Scott Hollenbeck |
2004-08-27
|
10 | Amy Vezza | [Note]: 'Allison Mankin requested this document be put on the 9/2/2004 IESG Teleconference agenda on behalf of Jon Peterson.' added by Amy Vezza |
2004-08-27
|
10 | Amy Vezza | State Changes to IESG Evaluation from Waiting for Writeup by Amy Vezza |
2004-08-27
|
10 | Amy Vezza | Placed on agenda for telechat - 2004-09-02 by Amy Vezza |
2004-08-26
|
10 | Jon Peterson | [Ballot Position Update] New position, Yes, has been recorded for Jon Peterson |
2004-08-26
|
10 | Jon Peterson | Ballot has been issued by Jon Peterson |
2004-08-26
|
10 | Jon Peterson | Created "Approve" ballot |
2004-08-23
|
10 | (System) | State has been changed to Waiting for Writeup from In Last Call by system |
2004-07-31
|
10 | Amy Vezza | Last call sent |
2004-07-31
|
10 | Amy Vezza | State Changes to In Last Call from Last Call Requested by Amy Vezza |
2004-07-31
|
10 | Jon Peterson | State Changes to Last Call Requested from AD Evaluation::AD Followup by Jon Peterson |
2004-07-31
|
10 | Jon Peterson | Last Call was requested by Jon Peterson |
2004-07-31
|
10 | (System) | Ballot writeup text was added |
2004-07-31
|
10 | (System) | Last call text was added |
2004-07-31
|
10 | (System) | Ballot approval text was added |
2004-07-22
|
10 | (System) | Sub state has been changed to AD Follow up from New Id Needed |
2004-07-22
|
06 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-06.txt |
2003-10-09
|
10 | Jon Peterson | State Changes to AD Evaluation::Revised ID Needed from AD Evaluation by Jon Peterson |
2003-07-10
|
10 | Jon Peterson | Corresponded with authors about the applicability of srcfilters to unicast. While applicability to multicast is clear and quite valuable, the use of the mechanism with … Corresponded with authors about the applicability of srcfilters to unicast. While applicability to multicast is clear and quite valuable, the use of the mechanism with unicast streams might easily be conflated with the generic MMUSIC source address filtering work. In particular, removing section 3.2.2 seems justified in the absence of any credible use case for unicast source filters. |
2003-06-04
|
10 | Jon Peterson | State Changes to AD Evaluation from Publication Requested by Peterson, Jon |
2003-05-27
|
10 | Natalia Syracuse | Draft Added by Syracuse, Natalia |
2003-05-16
|
05 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-05.txt |
2003-04-16
|
04 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-04.txt |
2003-02-18
|
03 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-03.txt |
2002-10-25
|
02 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-02.txt |
2002-07-03
|
01 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-01.txt |
2000-05-04
|
00 | (System) | New version available: draft-ietf-mmusic-sdp-srcfilter-00.txt |