[OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2023-12-22 Thread Douglas Gash (dcmgash)
Dear OPSAWG, Many thank for all the comments on the Secure TACACS+ (TLS) draft v3. We have submitted a revised doc which intention to address the concerns and comments. It is rather later than originally planned, our apologies for the delay. We will look forward to addressing the corresponding

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2023-12-28 Thread Alan DeKok
On Dec 22, 2023, at 11:53 AM, Douglas Gash (dcmgash) wrote: > Some brief notes regarding the broader topics raised in v3, all items of > course, are open for re-aligning as the group sees fit. > > • Regarding the allocation of a specific port, a key motivation > concerns the pervasive u

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2023-12-29 Thread Michael Richardson
Are port numbers really that precious (particularly if we can allow for a >1024 port allocation) that we have to force Deep Packet Inspection on systems that want to disallow non-TLS traffic, or at least, to identify it so that mis-configured clients can be fixed? Alan DeKok wrote: > For exa

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2023-12-29 Thread Alan DeKok
On Dec 29, 2023, at 1:58 PM, Michael Richardson wrote: > Are port numbers really that precious (particularly if we can allow for a >> 1024 port allocation) that we have to force Deep Packet Inspection on > systems that want to disallow non-TLS traffic, or at least, to identify it so > that mis-con

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2024-01-03 Thread Douglas Gash (dcmgash)
: Douglas Gash (dcmgash) Cc: opsawg@ietf.org , John Heasly , Andrej Ota Subject: Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4) On Dec 22, 2023, at 11:53 AM, Douglas Gash (dcmgash) wrote: > Some brief notes regarding the broader topics raised in v3, all items of > course, ar

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2024-01-25 Thread mohamed . boucadair
lease note that RFC7525 is now obsoleted by RFC9325). Cheers, Med De : OPSAWG De la part de Douglas Gash (dcmgash) Envoyé : vendredi 22 décembre 2023 17:54 À : opsawg@ietf.org Cc : John Heasly ; Andrej Ota Objet : [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4) Dear OPSAWG, Many tha

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2024-01-25 Thread Douglas Gash (dcmgash)
: opsawg@ietf.org Cc : John Heasly ; Andrej Ota Objet : [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4) Dear OPSAWG, Many thank for all the comments on the Secure TACACS+ (TLS) draft v3. We have submitted a revised doc which intention to address the concerns and comments. It is rather

Re: [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4)

2024-02-22 Thread Joe Clarke (jclarke)
: vendredi 22 décembre 2023 17:54 À : opsawg@ietf.org Cc : John Heasly ; Andrej Ota Objet : [OPSAWG] Submission of new version of TACACS+ TLS Spec (V4) Dear OPSAWG, Many thank for all the comments on the Secure TACACS+ (TLS) draft v3. We have submitted a revised doc which intention to address