Hi Tom,
Thanks for the comments, please see reply inline below.
Regards,
Bo
-邮件原件-
发件人: OPSAWG [mailto:opsawg-boun...@ietf.org] 代表 tom petch
发送时间: 2020年4月21日 17:09
收件人: Joe Clarke (jclarke) ; opsawg
主题: Re: [OPSAWG] WG LC: draft-ietf-opsawg-tacacs-yang-03
I think that more is needed
On Fri, Apr 17, 2020 at 3:27 PM Rob Wilton (rwilton) wrote:
>
> Hi,
>
>
>
> Thank you for this work. I found this document informative and both easy to
> read and understand. I have a one question on this document and a few nits
> listed below.
>
>
>
> My main question concerns this sentence
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Operations and Management Area Working Group
WG of the IETF.
Title : Secure Device Install
Authors : Warren Kumari
Colin
I think that more is needed for security.
Security Considerations does not list any sensitive nodes. I see 'secret' as
an obvious candidate with its nacm:deny-all and perhaps the list of servers and
their addresses.
The model allows for accounting or authorisation or authentication or all