FW: [db-wg] Proposal to deprecate CRYPT-PW authorisation in the RIPE Database
I think a number of people have pointed out why they wish to deprecate crypt-pw. No, I'm not convinced. And a number of people - only Gert Doering? The
Hi, -Hank point of view they propagate - it should increase security (in reality - not). But, we all know: false sense of security is worse than knowledge of a problem. -Hank
To answer your latest points - data in the DB should be accurate and it does show who is allowed or not allowed to use a range of IPs, and if the data does 'disappear' as you say, it will have operational impact on a number of ISPs that build their access lists from the data in the RIPE-DB.
"Should be" != "is" And to now this inaccuracy has NO operational impact on nobody. -Hank
It would appear that you might be enjoying the ability to abuse certain
RIPE objects with weak security and by deprecating crypt-pw we will be impacting your playground. Hank, I think it is very cheap accusation at first hand; you are not eligible to accuse me of something - the second; it (abusing) hasn't happened before to speak about it - the third. Speaking your way I can think that RIPE doesn't know where to put money and want us to allow spend them on the projects not well-thinked and useles. Please be more constructive! Let's not allow to go to personal accusation. Vladislav Potapov Ru.iiat
Hi, Potapov Vladislav wrote:
I think a number of people have pointed out why they wish to deprecate crypt-pw. No, I'm not convinced. And a number of people - only Gert Doering? The
Hi, -Hank point of view they propagate - it should increase security (in reality - not). But, we all know: false sense of security is worse than knowledge of a problem.
actually i don't care much about this issue, but since you raise the question - i have show my support for Gert/the proposal in general here, that is, i'm IN FAVOR of the depreciation of CRYPT-PW. It's not needed, it's more than a litte more insecure than MD5-PW, it doesn't change anything operational. ..and no i'm not going to comment any other side-arguments here, gets too personal. I support the original proposal - full stop. -- ======================================================================== = Sascha Lenz SLZ-RIPE slz@baycix.de = = Network Operations = = BayCIX GmbH, Landshut * PGP public Key on demand * = ========================================================================
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 05.10.2006 15:06, Sascha Lenz wrote:
[...]
It's not needed, it's more than a litte more insecure than MD5-PW, it doesn't change anything operational.
[...]
I support the original proposal - full stop.
Seconded, for the same reasons. Tobias - -- Tobias Cremer M.A. IP Admin Engineer Cable & Wireless Telecommunication Services GmbH Landsbergerstr. 155 80687 Muenchen Germany Tel +49 89 926 99 0 -- FAX +49 89 926 99 180 -- COMNET 7 49 9169 www.cw.com/de - -- Every message GnuPG signed -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFJQXPhC6y11CNwvcRAkGKAKDKgm57siXkIwJ6C1tJMmD2tfewiwCg4nyt ykPn91s7DuIqg3Q6Bopgsp8= =bR0e -----END PGP SIGNATURE-----
On 05.10.2006 15:06, Sascha Lenz wrote:
[...]
It's not needed, it's more than a litte more insecure than MD5-PW, it doesn't change anything operational.
[...]
I support the original proposal - full stop.
Seconded, for the same reasons. Tobias -- Tobias Cremer M.A. IP Admin Engineer Cable & Wireless Telecommunication Services GmbH Landsbergerstr. 155 80687 Muenchen Germany Tel +49 89 926 99 0 -- FAX +49 89 926 99 180 -- COMNET 7 49 9169 www.cw.com/de -- Every message GnuPG signed --
Hi! My official +1. We need to shut it out as mail-from was. Vladislav! If you wish to be really constructive - do policy proposal for shutting down MD5-PW - personally I will vote for that too. Sascha Lenz wrote:
Hi,
Potapov Vladislav wrote:
Hi, -Hank
I think a number of people have pointed out why they wish to deprecate
crypt-pw. No, I'm not convinced. And a number of people - only Gert Doering? The point of view they propagate - it should increase security (in reality - not). But, we all know: false sense of security is worse than knowledge of a problem.
actually i don't care much about this issue, but since you raise the question - i have show my support for Gert/the proposal in general here, that is, i'm IN FAVOR of the depreciation of CRYPT-PW.
It's not needed, it's more than a litte more insecure than MD5-PW, it doesn't change anything operational.
..and no i'm not going to comment any other side-arguments here, gets too personal.
I support the original proposal - full stop.
-- WBR, Max Tulyev (MT6561-RIPE, 2:463/253@FIDO)
participants (5)
-
Max Tulyev -
Potapov Vladislav -
Sascha Lenz -
Tobias Cremer -
Tobias Cremer