Re: iSCSI: Text request/response spanning - security issue?

To: wrstuden@wasabisystems.com
Subject: Re: iSCSI: Text request/response spanning - security issue?
From: Paul Koning <ni1d@arrl.net>
Date: Fri, 29 Mar 2002 14:50:16 -0500
Cc: ips@ece.cmu.edu
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii
References: <15524.26689.696151.300469@pkoning.akdesign.com><Pine.NEB.4.33.0203291042230.314-100000@candlekeep.home-net.internetconnect.net>
Sender: owner-ips@ece.cmu.edu

Excerpt of message (sent 29 March 2002) by Bill Studenmund:
> Why don't we negotiate a size? We have a default max size for individual
> key=value items, and a max for the entire set. Either the target or the
> initiator can try to negotiate it up, but has to deal with the other side
> saying no. You can't negotiate it below the default max that we decide on.
> 
> The main thing about making it a negotiated value is both sides can know
> what the other can do. We won't get surprise errors as we tripped over an
> undisclosed limit one side had.

But we're talking about limits of the negotiation process itself.
Yes, you can renegotiate after login, but login is the primary
negotiation point.  I think a fixed minimum requirement is more
straightforward. 

	 paul

Follow-Ups:
- Re: iSCSI: Text request/response spanning - security issue?
  - From: Bill Studenmund <wrstuden@wasabisystems.com>

References:
- Re: iSCSI: Text request/response spanning - security issue?
  - From: Paul Koning <ni1d@arrl.net>
- Re: iSCSI: Text request/response spanning - security issue?
  - From: Bill Studenmund <wrstuden@wasabisystems.com>

Prev by Date: RE: iSCSI: New Lucent stmt on SRP
Next by Date: Re: iSCSI: Text request/response spanning - security issue?
Prev by thread: Re: iSCSI: Text request/response spanning - security issue?
Next by thread: Re: iSCSI: Text request/response spanning - security issue?
Index(es):
- Date
- Thread

Home

Last updated: Fri Mar 29 16:18:16 2002
9385 messages in chronological order