[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Captive-portals] Review of draft-wkumari-capport-icmp-unreach-01

To: [email protected], [email protected]
Subject: [Captive-portals] Review of draft-wkumari-capport-icmp-unreach-01
From: Martin Thomson <[email protected]>
Date: Sat, 1 Apr 2017 15:40:32 -0500
Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/cfv9jNwLJpAhvntjGwUSLarXwgg>
Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Delivered-to: [email protected]
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=0xREs4nCbnO+29mRIetuPuCaX7dHBM+n50qcyIQN60k=; b=E7q41yudDIR6SguPoxwFGbW//v7h8RXn37ong2H8EnNxam5OHqp8hqFmaqCZySL8e/ YC2NiwNY/svCDxkWIBnBiMqC6hiEFUk6dGjT4RzkK9UC5Y1v+POOUuHS+cpNtp4z6+5M UPrZlKJgQ4C+0DBBCmJk6pnNLVUtq9igu75mA9YAFa9mDNDJxWcB2MnwGYp4grRUNZzv S9rGKHz/Y4Xd+voN9+qgN/kiPAJTKxbcpE5NkSEbn0cBU2RhaD06JNM/E5MyCPNLNRCD GnqAlLA4j6SSumQhrLdtae+FNwbwAqI9sCftJ2Zq+w1vI4G04iE/b9RKb9MziztBKnej CNTQ==
List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>
List-help: <mailto:[email protected]?subject=help>
List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>

(As a contributor only.)

David, Warren,

Looking at this draft, I think that there are a few fairly major
changes that this could benefit from.

# Extension payload

The presence of the extension is sufficient signaling for this channel.

If we accept that there will be a protocol for asking the portal for
basic information about connectivity, the UE/device/etc can query that
interface for expiration time.

The warning bit seems dangerous in this context given that it
establishes a non-backwards-compatible behaviour.  To an entity that
doesn't understand this extension, ICMP Unreachable means that the
packet was not forwarded.  I don't think that an extension can safely
change this.

The one obvious caveat for this comment is if we determine that RFC
7710 is insufficient for advertisement of the captive portal URL.  In
that case, we might consider adding the URL to the ICMP message.  I
don't see any evidence that this is necessary yet, and that would
compound the next issue, but it's something to consider.

# Security considerations

There is a fairly direct path between this message and a user visiting
the site identified.  Now, it is well-accepted that it is easy to
cause a user to visit any site, but nonetheless this needs to be
discussed.  We can also offer some suggestions for reducing the use of
this message by arbitrary endpoints.  For example, a device that
receives this message might not act immediately, but instead trigger
portal detection routines before opening a browser.  Those routines
might involve sending more packets and looking for more ICMP
unreachable packets.

For this reason, I think that we should mandate the use of RFC 4884
and a minimum size for the echo of the dropped packet.

Follow-Ups:
- Re: [Captive-portals] Review of draft-wkumari-capport-icmp-unreach-01
  - From: David Bird <[email protected]>

Prev by Date: Re: [Captive-portals] Follow up on hackathon results
Next by Date: [Captive-portals] New co-chair, Erik Kline
Previous by thread: Re: [Captive-portals] Follow up on hackathon results
Next by thread: Re: [Captive-portals] Review of draft-wkumari-capport-icmp-unreach-01
Index(es):
- Date
- Thread