Skip to main content

Uniform Resource Identifier (URI) Scheme for the Simple Network Management Protocol (SNMP)
RFC 4088

Discuss


Yes

(Bert Wijnen)
(Ted Hardie)

No Objection

(Alex Zinin)
(Allison Mankin)
(Bill Fenner)
(David Kessens)
(Jon Peterson)
(Margaret Cullen)
(Russ Housley)
(Scott Hollenbeck)
(Thomas Narten)

Note: This ballot was opened for revision 09 and is now closed.

(Steven Bellovin; former steering group member) Discuss

Discuss [Treat as non-blocking comment] (2004-11-12)
The security considerations section needs to be revised.  All but the first paragarph is standard MIB boilerplate, which doesn't really fit here -- this isn't a MIB, it's a way to represent them.

What needs to be said is this:  The communication paths from the URI user to the gateway and from the gateway to the SNMP agent need to be secured appropriately.  In particular, the gateway needs to either have a priori knowledge of the SNMP security mechanisms that should be applied, or the information must be supplied to it by the querier with the request.  In this case, all requests to the gateway must be integrity-protected.

(Bert Wijnen; former steering group member) Yes

Yes ()

                            

(Ted Hardie; former steering group member) Yes

Yes ()

                            

(Alex Zinin; former steering group member) No Objection

No Objection ()

                            

(Allison Mankin; former steering group member) No Objection

No Objection ()

                            

(Bill Fenner; former steering group member) No Objection

No Objection ()

                            

(David Kessens; former steering group member) No Objection

No Objection ()

                            

(Harald Alvestrand; former steering group member) No Objection

No Objection (2004-10-28)
Reviewed by Joel Halpern, Gen-ART

His review:

This draft is basically ready for publication as a Proposed Standard
RFC, but has nits that I think should be clarified before publication.

minor:
   This document specifically uses URIs with a second double-slash in
   them -
        snmp://<host>//<oid>
   And then goes on to say roughly, ~if this does not work, the URI
   parser is broken.  Fix it.~ In working on other efforts, we have
   been cautioned against this construct, and told that it may cause
   trouble for proxies / parsers.  I am not enough of an HTTP / URI
   expert to know whether the usage in this document is safe.

(Jon Peterson; former steering group member) No Objection

No Objection ()

                            

(Margaret Cullen; former steering group member) No Objection

No Objection ()

                            

(Russ Housley; former steering group member) No Objection

No Objection ()

                            

(Scott Hollenbeck; former steering group member) No Objection

No Objection ()

                            

(Thomas Narten; former steering group member) No Objection

No Objection ()