Last Call Review of draft-ietf-sieve-notify-presence-
review-ietf-sieve-notify-presence-secdir-lc-santesson-2010-11-22-00
| Request | Review of | draft-ietf-sieve-notify-presence |
|---|---|---|
| Requested revision | No specific revision (document currently at 04) | |
| Type | Last Call Review | |
| Team | Security Area Directorate (secdir) | |
| Deadline | 2010-11-30 | |
| Requested | 2010-10-29 | |
| Authors | Barry Leiba , Robins George | |
| I-D last updated | 2010-11-22 | |
| Completed reviews |
Secdir Last Call review of -??
by Stefan Santesson
|
|
| Assignment | Reviewer | Stefan Santesson |
| State | Completed | |
| Request | Last Call review on draft-ietf-sieve-notify-presence by Security Area Directorate Assigned | |
| Completed | 2010-11-22 |
review-ietf-sieve-notify-presence-secdir-lc-santesson-2010-11-22-00
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft seems short well written and to the point. However, the security considerations section seems to be on the short side and I'm wandering if all relevant security issues really are covered. One thing that strikes me as possibly relevant is if this in any way can be a means (in some variants of it's use) through which a spammer can gain information about the status of the recipient. /Stefan Santesson