From beepwg-bounces@dbc.mtview.ca.us Mon Oct 31 13:44:49 2005
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org)
	by megatron.ietf.org with esmtp (Exim 4.32)
	id 1EWeeF-0006LX-G9
	for beep-archive@megatron.ietf.org; Mon, 31 Oct 2005 13:44:49 -0500
Received: from drakken.dbc.mtview.ca.us ([168.143.123.173])
	by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA27543
	for <beep-archive@lists.ietf.org>; Mon, 31 Oct 2005 13:44:27 -0500 (EST)
Received: from drakken.dbc.mtview.ca.us (localhost.localdomain [127.0.0.1])
	by drakken.dbc.mtview.ca.us (8.12.11/8.12.8) with ESMTP id j9VIdXNc009719;
	Mon, 31 Oct 2005 10:39:37 -0800
Received: from borg.juniper.net (borg.juniper.net [207.17.137.119])
	j9VIdWSv009716
	for <beepwg@lists.beepcore.org>; Mon, 31 Oct 2005 10:39:32 -0800
Received: from unknown (HELO gamma.jnpr.net) (172.24.245.25)
  by borg.juniper.net with ESMTP; 31 Oct 2005 10:39:25 -0800
X-BrightmailFiltered: true
X-Brightmail-Tracker: AAAAAA==
X-IronPort-AV: i="3.97,270,1125903600"; 
   d="scan'208,217"; a="507297935:sNHT37477856"
Received: from antitop.jnpr.net ([172.24.15.27]) by gamma.jnpr.net with
	Microsoft SMTPSVC(6.0.3790.1830);	 Mon, 31 Oct 2005 10:39:24 -0800
x-mimeole: Produced By Microsoft Exchange V6.5.7226.0
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Mon, 31 Oct 2005 10:39:24 -0800
Message-ID: <B8C821F9E0675D44BFA994C28C0120E5584E30@antitop.jnpr.net>
Thread-Topic: <greeting> after sasl?
Thread-Index: AcXeSmn6jwx7RuUcQsmwk6sZFUCnsg==
From: "Kent Watsen" <kwatsen@juniper.net>
To: <beepwg@lists.beepcore.org>
X-OriginalArrivalTime: 31 Oct 2005 18:39:24.0492 (UTC)
	FILETIME=[6A74E8C0:01C5DE4A]
Subject: [BEEPwg] <greeting> after sasl?
X-BeenThere: beepwg@lists.beepcore.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Mailing list for the IETF's BEEP working group
	<beepwg.lists.beepcore.org>
List-Unsubscribe: <http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg>,
	<mailto:beepwg-request@lists.beepcore.org?subject=unsubscribe>
List-Archive: <http://drakken.dbc.mtview.ca.us/pipermail/beepwg>
List-Post: <mailto:beepwg@lists.beepcore.org>
List-Help: <mailto:beepwg-request@lists.beepcore.org?subject=help>
List-Subscribe: <http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg>,
	<mailto:beepwg-request@lists.beepcore.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============0017131038968090095=="
Sender: beepwg-bounces@dbc.mtview.ca.us
Errors-To: beepwg-bounces@dbc.mtview.ca.us

This is a multi-part message in MIME format.

--===============0017131038968090095==
Content-class: urn:content-classes:message
Content-Type: multipart/alternative;
	boundary="----_=_NextPart_001_01C5DE4A.6A38072B"

This is a multi-part message in MIME format.

------_=_NextPart_001_01C5DE4A.6A38072B
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Sorry if this has been answered before, but my search through the
archives and other online resources did not provide a definitive
answer...

=20

Is another <greeting> exchange expected after the SASL profile is used
for authentication?  The spec implies there is a "tuning reset" after
each tuning profile is used and it implies that the SASL profile is a
tuning profile, but I can't find examples illustrating a new <greeting>
exchange either...

=20

It would be surprising for a server to advertise its "exchange" profiles
before the client has authenticated itself.  Not only does this
unnecessarily reveal information, but the server might want to select
which profiles to advertised based on the authorizations of the
authenticated client

=20

Thanks

Kent

=20

=20


------_=_NextPart_001_01C5DE4A.6A38072B
Content-Type: text/html;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:st1=3D"urn:schemas-microsoft-com:office:smarttags" =
xmlns=3D"http://www.w3.org/TR/REC-html40">

<head>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<o:SmartTagType =
namespaceuri=3D"urn:schemas-microsoft-com:office:smarttags"
 name=3D"country-region" downloadurl=3D"http://www.5iantlavalamp.com/"/>
<o:SmartTagType =
namespaceuri=3D"urn:schemas-microsoft-com:office:smarttags"
 name=3D"place" downloadurl=3D"http://www.5iantlavalamp.com/"/>
<!--[if !mso]>
<style>
st1\:*{behavior:url(#default#ieooui) }
</style>
<![endif]-->
<style>
<!--
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:12.0pt;
	font-family:"Times New Roman";}
a:link, span.MsoHyperlink
	{color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{color:purple;
	text-decoration:underline;}
span.EmailStyle17
	{mso-style-type:personal-compose;
	font-family:Arial;
	color:windowtext;}
@page Section1
	{size:8.5in 11.0in;
	margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
	{page:Section1;}
-->
</style>

</head>

<body lang=3DEN-US link=3Dblue vlink=3Dpurple>

<div class=3DSection1>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier New"'>Sorry if this has =
been answered
before, but my search through the archives and other online resources =
did not
provide a definitive answer&#8230;<o:p></o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier =
New"'><o:p>&nbsp;</o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier New"'>Is another =
&lt;greeting&gt;
exchange expected after the SASL profile is used for =
authentication?&nbsp; The spec
implies there is a &quot;tuning reset&quot; after each tuning profile is =
used
and it implies that the SASL profile is a tuning profile, but I can't =
find
examples illustrating a new &lt;greeting&gt; exchange =
either...<o:p></o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier =
New"'><o:p>&nbsp;</o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier New"'>It would be =
surprising for a
server to advertise its &#8220;exchange&#8221; profiles before the =
client has
authenticated itself.&nbsp; Not only does this unnecessarily reveal =
information, but
the server might want to select which profiles to advertised based on =
the
authorizations of the authenticated client<o:p></o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier =
New"'><o:p>&nbsp;</o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier =
New"'>Thanks<o:p></o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><st1:place =
w:st=3D"on"><st1:country-region
 w:st=3D"on"><font size=3D2 face=3D"Courier New"><span =
style=3D'font-size:10.0pt;
  font-family:"Courier =
New"'>Kent</span></font></st1:country-region></st1:place><font
size=3D2 face=3D"Courier New"><span =
style=3D'font-size:10.0pt;font-family:"Courier =
New"'><o:p></o:p></span></font></p>

<p class=3DMsoNormal style=3D'text-autospace:none'><font size=3D2 =
face=3D"Courier New"><span
style=3D'font-size:10.0pt;font-family:"Courier =
New"'><o:p>&nbsp;</o:p></span></font></p>

<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

</div>

</body>

</html>

------_=_NextPart_001_01C5DE4A.6A38072B--

--===============0017131038968090095==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

_______________________________________________
BEEPwg mailing list
BEEPwg@lists.beepcore.org
http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg

--===============0017131038968090095==--



From beepwg-bounces@dbc.mtview.ca.us Mon Oct 31 15:56:20 2005
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org)
	by megatron.ietf.org with esmtp (Exim 4.32)
	id 1EWghY-0007fP-Iz
	for beep-archive@megatron.ietf.org; Mon, 31 Oct 2005 15:56:20 -0500
Received: from drakken.dbc.mtview.ca.us ([168.143.123.173])
	by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA09150
	for <beep-archive@lists.ietf.org>; Mon, 31 Oct 2005 15:56:00 -0500 (EST)
Received: from drakken.dbc.mtview.ca.us (localhost.localdomain [127.0.0.1])
	by drakken.dbc.mtview.ca.us (8.12.11/8.12.8) with ESMTP id j9VKqhaX011187;
	Mon, 31 Oct 2005 12:52:44 -0800
Received: from mail.sarbserve.com (mail.sarbserve.com [24.244.171.76])
	j9VKqeh7011184
	for <beepwg@lists.beepcore.org>; Mon, 31 Oct 2005 12:52:41 -0800
Received: from [IPv6:::1] (mrose@localhost.localdomain [127.0.0.1])
	j9VKqQDZ016122;	Mon, 31 Oct 2005 12:52:30 -0800
In-Reply-To: <B8C821F9E0675D44BFA994C28C0120E5584E30@antitop.jnpr.net>
References: <B8C821F9E0675D44BFA994C28C0120E5584E30@antitop.jnpr.net>
Mime-Version: 1.0 (Apple Message framework v734)
Content-Type: text/plain; charset=WINDOWS-1252; delsp=yes; format=flowed
Message-Id: <FCE504F4-A611-441E-A388-0190E86E1B4D@dbc.mtview.ca.us>
From: Marshall Rose <mrose@dbc.mtview.ca.us>
Subject: Re: [BEEPwg] <greeting> after sasl?
Date: Mon, 31 Oct 2005 12:52:26 -0800
To: Kent Watsen <kwatsen@juniper.net>
X-Mailer: Apple Mail (2.734)
X-MIME-Autoconverted: from quoted-printable to 8bit by
	drakken.dbc.mtview.ca.us id j9VKqeh7011184
cc: beepwg@lists.beepcore.org
X-BeenThere: beepwg@lists.beepcore.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Mailing list for the IETF's BEEP working group
	<beepwg.lists.beepcore.org>
List-Unsubscribe: <http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg>,
	<mailto:beepwg-request@lists.beepcore.org?subject=unsubscribe>
List-Archive: <http://drakken.dbc.mtview.ca.us/pipermail/beepwg>
List-Post: <mailto:beepwg@lists.beepcore.org>
List-Help: <mailto:beepwg-request@lists.beepcore.org?subject=help>
List-Subscribe: <http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg>,
	<mailto:beepwg-request@lists.beepcore.org?subject=subscribe>
Sender: beepwg-bounces@dbc.mtview.ca.us
Errors-To: beepwg-bounces@dbc.mtview.ca.us
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by ietf.org id PAA09150

> Sorry if this has been answered before, but my search through the =20
> archives and other online resources did not provide a definitive =20
> answer=85
>
>
>
> Is another <greeting> exchange expected after the SASL profile is =20
> used for authentication?  The spec implies there is a "tuning =20
> reset" after each tuning profile is used and it implies that the =20
> SASL profile is a tuning profile, but I can't find examples =20
> illustrating a new <greeting> exchange either...
>
>
>
> It would be surprising for a server to advertise its =93exchange=94 =20
> profiles before the client has authenticated itself.  Not only does =20
> this unnecessarily reveal information, but the server might want to =20
> select which profiles to advertised based on the authorizations of =20
> the authenticated client

authentication, per se, doesn't qualify as a tuning reset; however, =20
if the sasl method also involves additional security features, viz., =20
integrity/privacy, then that does get you a tuning reset.

/mtr


_______________________________________________
BEEPwg mailing list
BEEPwg@lists.beepcore.org
http://drakken.dbc.mtview.ca.us/mailman/listinfo/beepwg