Chris Lonvick | 23 May 14:24 2003

Meeting in Vienna?

Hi Folks,

Would anyone like to have a WG meeting in Vienna?  I believe that the open
items are:

- Completion of syslog-sign ID - On track with Jon getting a new revision

- Completion of the syslog-mib ID - On track with Glenn working on a
  revision from comments from the WG meeting at IETF56.

- Need to prepare an ID on the internationalization of the messages.  The
  current methods are to transport US-ASCII only.  I've been talking with
  someone who may be interested in drafting that work.  If you have
  thoughts on the subject, please bring them up to the list.

- Waiting to see what happens with the Enns draft and NetConf.
  RFC 3195 has been proposed as the basis for the transport for NetConf
  (formerly the XMLconf effort) and the WG accepted at IETF56 that NetConf
  requirements may influence the updating of this work.

Does anyone have any other items for the group?

From that, I don't think that the WG has any issues that need to be
discussed/resolved at IETF57.  If anyone thinks that we do, please bring
it up to the list.  I'll be glad to call a meeting if we do.

(Continue reading)

Internet-Drafts | 30 May 13:15 2003

I-D ACTION:draft-ietf-syslog-sign-11.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Security Issues in Network Event Logging Working Group of the IETF.

	Title		: Syslog-Sign Protocol
	Author(s)	: J. Kelsey, J. Callas
	Filename	: draft-ietf-syslog-sign-11.txt
	Pages		: 40
	Date		: 2003-5-29

This document describes syslog-sign, a mechanism adding origin
authentication, message integrity, replay-resistance, message
sequencing, and detection of missing messages to syslog. Syslog-sign
provides these security features in a way that has minimal
requirements and minimal impact on existing syslog implementations.
It is possible to support syslog-sign and gain some of its security
attributes by only changing the behavior of the devices generating
syslog messages. Some additional processing of the received syslog
messages and the syslog-sign messages on the relays and collectors
may realize additional security benefits.

A URL for this Internet-Draft is:

To remove yourself from the IETF Announcement list, send a message to
ietf-announce-request with the word unsubscribe in the body of the message.

Internet-Drafts are also available by anonymous FTP. Login with the username
"anonymous" and a password of your e-mail address. After logging in,
type "cd internet-drafts" and then
	"get draft-ietf-syslog-sign-11.txt".
(Continue reading)