[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Simple] <note> in IMDN

To: Eric Burger <eburger at sipforum.org>
Subject: Re: [Simple] <note> in IMDN
From: Ben Campbell <ben at estacado.net>
Date: Tue, 3 Jun 2008 16:46:58 -0500
Cc: Paul Kyzivat <pkyzivat at cisco.com>, simple at ietf.org
Delivered-to: ietfarch-simple-web-archive at core3.amsl.com
Delivered-to: simple at core3.amsl.com
In-reply-to: <AD5C512E-842F-48F3-8824-03EE8A7F7905@sipforum.org>
List-archive: <http://www.ietf.org/pipermail/simple>
List-help: <mailto:simple-request@ietf.org?subject=help>
List-id: SIP for Instant Messaging and Presence Leveraging Extensions <simple.ietf.org>
List-post: <mailto:simple@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=unsubscribe>
References: <1660532724-1210725948-cardhu_decombobulator_blackberry.rim.net-784864713-@bxe033.bisx.prod.on.blackberry> <66cd252f0805131939t6569dab7r45d8ced20471a157@mail.gmail.com> <77384F67-E82C-483C-B555-665BFAF02D4E@standardstrack.com> <66cd252f0805132138m23aa3f42kf01ce0dcb7c42181@mail.gmail.com> <3092F25A-A072-4952-9C44-8C639B1925E2@softarmor.com> <4834C22B.1000407@cisco.com> <AD5C512E-842F-48F3-8824-03EE8A7F7905@sipforum.org>
Sender: simple-bounces at ietf.org

On May 23, 2008, at 2:21 PM, Eric Burger wrote:

> Actually, IMDNs, even the SIMPLE free-form fields, are fairly
> constrained.  Any mis-match is an opportunity to filter out bad
> IMDNs.  The <note> field has three problems:
>
> 1. It cannot be filtered, as any content could be real (which
> introduces the attack vector)
>
> 2. It cannot know what language it should use, and thus is not likely
> to be useful to the recipient
>
> 3. It has no protocol value, and is of no value to the UA
>
>
> So, if something has no useful protocol value and introduces a spam
> opportunity, why would we want to include it?
>

If something has no useful protocol value, even if it _does_no_harm,  
why would we want to include it?

IMHO, there is no need to prove a vector for harm, if we are fairly  
certain there is no vector for _utility_.

(Note that I am agnostic on whether  the field is truly useless--I am  
merely commenting on the form of the argument.)


>
>
> On May 21, 2008, at 7:45 PM, Paul Kyzivat wrote:
>
>> Its kind of late to be thinking about this now. THe problem is
>> pervasive
>> in MSRP.
>>
>> In SIP there are lots of unconstrained fields. But they are all
>> constrained by the overall size of the message, and people commonly
>> put
>> limits on that.
>>
>> In MSRP, because of chunking, a single MSRP message can be gigabytes
>> long. So using that to bound the unconstrained parts of the headers
>> doesn't work very well.
>>
>> A robust implementation might take a similar approach - define its  
>> own
>> limit on the total message size, excluding the body. Then it could
>> constrain all the unconstrained fields to fit within it.
>>
>> But picking on one header isn't a solution to the problem. Either
>> assume
>> the developers will be able to deal with it, or else do and MSRPv2
>> that
>> eliminates all unconstrained fields.
>>
>> 	Paul
>>
>> Dean Willis wrote:
>>> On May 13, 2008, at 11:38 PM, Hisham Khartabil wrote:
>>>
>>>> Can you explain how it is an attack vector?
>>>
>>>
>>> Unconstrained rich content is one of the most easily exploited  
>>> attack
>>> vectors.
>>>
>>> Buffer overrun attacks as well as all of the typical MIME compound-
>>> component attacks are likely. For example, the common JPEG
>>> vulnerabilities might be exploitable:
>>>
>>> http://www.news.com/Image-virus-spreads-via-chat/2100-7349_3-5390463.html
>>>
>>>
>>> Or the content-execution weakness that caused the Macintosh Safari
>>> browse to be most easily exploited in recent hacking contests:
>>>
>>> http://www.engadget.com/2007/07/23/safari-exploit-gives-hackers-full-control-of-your-iphone/
>>>
>>>
>>> There have also been exploits against QuickTime, Flash, and most
>>> other
>>> plugin components from time to time.
>>>
>>> --
>>> Dean
>>> _______________________________________________
>>> Simple mailing list
>>> Simple at ietf.org
>>> https://www.ietf.org/mailman/listinfo/simple
>>>
>> _______________________________________________
>> Simple mailing list
>> Simple at ietf.org
>> https://www.ietf.org/mailman/listinfo/simple
>
> _______________________________________________
> Simple mailing list
> Simple at ietf.org
> https://www.ietf.org/mailman/listinfo/simple

_______________________________________________
Simple mailing list
Simple at ietf.org
https://www.ietf.org/mailman/listinfo/simple

Follow-Ups:
- Re: [Simple] <note> in IMDN
  - From: Hisham Khartabil

References:
- Re: [Simple] <note> in IMDN
  - From: eburger
- Re: [Simple] <note> in IMDN
  - From: Hisham Khartabil
- Re: [Simple] <note> in IMDN
  - From: Eric Burger
- Re: [Simple] <note> in IMDN
  - From: Hisham Khartabil
- Re: [Simple] <note> in IMDN
  - From: Dean Willis
- Re: [Simple] <note> in IMDN
  - From: Paul Kyzivat
- Re: [Simple] <note> in IMDN
  - From: Eric Burger

Prev by Date: Re: [Simple] <note> in IMDN
Next by Date: Re: [Simple] <note> in IMDN
Previous by thread: Re: [Simple] <note> in IMDN
Next by thread: Re: [Simple] <note> in IMDN
Index(es):
- Date
- Thread