From diameter-admin@frascone.com Tue Jun 1 05:15:08 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA08000 for ; Tue, 1 Jun 2004 05:15:08 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id D911A20DEE for ; Tue, 1 Jun 2004 05:02:08 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 05C3620D9E for ; Tue, 1 Jun 2004 05:01:10 -0400 (EDT) Date: Tue, 01 Jun 2004 05:01:09 -0400 Message-ID: <20040601090109.4991.98139.Mailman@xavier> Subject: frascone.com mailing list memberships reminder From: mailman-owner@wolverine.cnri.reston.va.us To: eap-archive@ietf.org X-No-Archive: yes X-Ack: no Sender: diameter-admin@frascone.com Errors-To: diameter-admin@frascone.com X-BeenThere: diameter@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) This is a reminder, sent out once a month, about your frascone.com mailing list memberships. It includes your subscription info and how to use it to change it or unsubscribe from a list. You can visit the URLs to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on. In addition to the URL interfaces, you can also use email to make such changes. For more info, send a message to the '-request' address of the list (for example, eap-request@frascone.com) containing just the word 'help' in the message body, and an email message will be sent to you with instructions. If you have questions, problems, comments, etc, send them to mailman-owner@wolverine. Thanks! Passwords for eap-archive@lists.ietf.org: List Password // URL ---- -------- eap@frascone.com ohweow http://mail.frascone.com/mailman/options/eap/eap-archive%40lists.ietf.org From MilagrosBarrera@post.pl Tue Jun 1 05:38:09 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA09583 for ; Tue, 1 Jun 2004 05:38:09 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BV5ii-0007hE-NU for eap-archive@ietf.org; Tue, 01 Jun 2004 05:38:08 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BV5hZ-0007BW-00 for eap-archive@ietf.org; Tue, 01 Jun 2004 05:36:57 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BV5gs-0006k2-02 for eap-archive@ietf.org; Tue, 01 Jun 2004 05:36:14 -0400 Received: from acb6dab9.ipt.aol.com ([172.182.218.185]) by mx2.foretec.com with smtp (Exim 4.24) id 1BV5YO-0005BM-Ov for eap-archive@ietf.org; Tue, 01 Jun 2004 05:27:31 -0400 X-Authentication-Warning: ehrlich arbitrage circumcircle molar Date: Tue, 01 Jun 2004 16:21:18 +0600 From: Tackett Cory Reply-To: Tackett Cory Message-ID: To: drafts@ietf.org Subject: shuffleboard References: In-Reply-To: X-Mailer: usurpation dogging beetle MIME-Version: 1.0 Content-Type: text/html; charset="ascii-us" Content-Transfer-Encoding: 7Bit X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=0.1 required=5.0 tests=HTML_MESSAGE,MIME_HTML_ONLY autolearn=no version=2.60 Content-Transfer-Encoding: 7Bit Drafts fabian oftentimes byzantine ginkgo chartreuse down pillage common artemisia Image is Loading . . . .

Email not Loading?

S.a.v.e upto 7O%+, Ord.er He.re

calvert croupier sledgehammer slurp academician divisional kankakee beechwood fernery teahouse conscionable babcock crisp asphyxiate buffoon occultate upwind detractor bugeyed timon coequal turn configuration legate hoar aristocratic resorcinol petroglyph thank great hug lucille basophilic duty luminance premiere argillaceous deprivation ape lofty ramp sentry winnipeg bandit ypsilanti bisque dreamt sausage coffee gerard debonair disgustful requited sian dilution cottage delusion tatty caller censorial snort cartoon persecution ballard pogrom hasp afford conjoin boatswain injurious extolling businessmen compute bambi rebellious wrap again ku april implement sullen lope apace contradistinction bartholomew eddy breakaway carpet embrace masochist brash lacrosse avionic vivaldi shameface antigone lifespan cesium data gorse borough ernestine fiduciary chapman concentric militarist sunshiny desideratum paragon protestant neurasthenic brigade span edmund buckaroo reproach sheathe ecstasy anisotropic blather asleep onus penitentiary eugenic axle bonus chungking spectra cecil chill dalhousie transfusion inconvenient compile acrimony captain formatting antioch burlesque airspeed hornet venous embank chris casey instigate identify stan molar daniel perseverant berwick tsarina impregnate asilomar farewell secretion extreme cursive arpeggio steady alhambra enrollee familiar croak doesn't fern arsenide assimilable delightful sleigh bakhtiari woodard pediatrician angelica duffel pairwise holman support vinson basswood cubic depressor post nile coin perchlorate streamside backplane diddle muff mandrake nsf biscuit petrol simply delectable reside brinkmanship zombie fermi downturn scarborough compendia rumpus bergland cretin sanctimonious deceive journey dissension dryad hackney advantage algebraic washbasin pius mezzanine colette endure arching diploidy canon isolate nigger rusk bazaar impious erosion yarrow brood pottery waybill evaluable oregano pert admit allan appreciable crap substantial slept wher esoever podium stitch jason bridgeable keeshond babcock dent legitimacy sit subtlety ariadne pentagram skillet pistachio bath caretaker trip gatekeep dreamboat suggest wicket luge neuralgia boule emperor valediction eager calcium metalwork confute wreak intuitive two intangible chlorophyll canny alive gam crone markov mercenary wasp paddy squawk beograd privet wraith alteration distant candy danzig registrable methane fritillary housework cajole climactic alley queasy boost kiosk rever billfold escheat conspirator interference klan glade physiotherapist consonant lucky crag crematory decolletage status harriet missile desert bolshevist From eap-admin@frascone.com Tue Jun 1 09:21:07 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA27465 for ; Tue, 1 Jun 2004 09:21:07 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 8A7FD20D6E; Tue, 1 Jun 2004 09:08:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 5577F20D61; Tue, 1 Jun 2004 09:08:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id C860D20D61 for ; Tue, 1 Jun 2004 09:07:39 -0400 (EDT) Received: from mtiwmhc13.worldnet.att.net (mtiwmhc13.worldnet.att.net [204.127.131.117]) by mail.frascone.com (Postfix) with ESMTP id 2E36A20B95 for ; Tue, 1 Jun 2004 09:07:38 -0400 (EDT) Received: from gw (112.san-jose-09-10rs.ca.dial-access.att.net[12.72.195.112]) by worldnet.att.net (mtiwmhc13) with SMTP id <2004060113203611300jfiale>; Tue, 1 Jun 2004 13:20:36 +0000 Message-ID: <004b01c447db$15e7a8d0$010aff0a@gw> From: "todd glassey" To: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1409 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] I need to build a WLSE protocol exchange model for S-Ox compliance. Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Tue, 1 Jun 2004 06:19:22 -0700 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit I have an interesting problem - I need to build a WLSE protocol exchange model for S-Ox Compliance, otherwise this client of mine (a very large bank) will have to stop using the wireless services. The problem is after the CERT alert about the hard coded passwords in WLSE it became a serious problem to the auditors and the only thing we can do to keep using the Cisco Gear is totally map the protocol out end-to-end and since it doesn't appear to follow the current EAPOL drafts its a concern. Anyone got an idea about how to get this protocol-transaction workflow (the handshaking)? - Please send me responses to this directly to the tglassey@stanford.edu address TIA Todd Glassey _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Tue Jun 1 16:53:07 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA23959 for ; Tue, 1 Jun 2004 16:53:06 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id E6EBA20547; Tue, 1 Jun 2004 16:40:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 4188220BAD; Tue, 1 Jun 2004 16:40:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 6795220BAD for ; Tue, 1 Jun 2004 16:39:46 -0400 (EDT) Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by mail.frascone.com (Postfix) with ESMTP id EDB8C20547 for ; Tue, 1 Jun 2004 16:39:44 -0400 (EDT) Received: from apache by megatron.ietf.org with local (Exim 4.32) id 1BVFzk-0007iU-QW; Tue, 01 Jun 2004 16:36:24 -0400 X-test-idtracker: no From: The IESG To: IETF-Announce: ; Cc: Internet Architecture Board , RFC Editor , eap mailing list , eap chair , eap chair , eap chair , eap chair Message-Id: X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Document Action: 'State Machines for Extensible Authentication Protocol (EAP) Peer and Authenticator' to Informational RFC Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Tue, 01 Jun 2004 16:36:24 -0400 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) The IESG has approved the following document: - 'State Machines for Extensible Authentication Protocol (EAP) Peer and Authenticator ' as an Informational RFC This document is the product of the Extensible Authentication Protocol Working Group. The IESG contact persons are Margaret Wasserman and Thomas Narten. Technical Summary This document describes a set of state machines for EAP peer, EAP standalone authenticator (non-pass-through), EAP backend authenticator (for use on Authentication, Authorization and Accounting (AAA) servers), and EAP full authenticator (for both local and pass-through). This set of state machines shows how EAP can be implemented to support deployment in either a peer/AP or peer/AP/AAA Server environment. The peer and standalone authenticator machines are illustrative of how the EAP protocol defined in [I-D.ietf-eap-rfc2284bis] may be implemented. The backend and full/ pass-through authenticators illustrate how EAP/AAA protocol support defined in [RFC3579] may be implemented. Where there are differences [I-D.ietf-eap-rfc2284bis]/[RFC3579] are authoritative. This document describes a state machine based on an EAP "Switch" model. This model includes events and actions for the interaction between the EAP Switch and EAP methods. A brief description of the EAP "Switch" model is given in the Introduction section. The State Machine and associated model are informative only. Implementations may achieve the same results using different methods. Working Group Summary This document is the work of the EAP WG. Protocol Quality This document was reviewed for the IESG by Margaret Wasserman. _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Wed Jun 2 03:08:08 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA03861 for ; Wed, 2 Jun 2004 03:08:08 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 82BD0204A9; Wed, 2 Jun 2004 02:55:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 098E820945; Wed, 2 Jun 2004 02:55:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 6CA192097F for ; Wed, 2 Jun 2004 02:54:19 -0400 (EDT) Received: from internaut.com (h-66-167-171-107.sttnwaho.covad.net [66.167.171.107]) by mail.frascone.com (Postfix) with ESMTP id 7B38520945 for ; Wed, 2 Jun 2004 02:54:17 -0400 (EDT) Received: from localhost (aboba@localhost) by internaut.com (8.10.2/8.10.2) with ESMTP id i5279E127371 for ; Wed, 2 Jun 2004 00:09:14 -0700 From: Bernard Aboba To: eap@frascone.com Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Strawman agenda for IETF 60 Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 2 Jun 2004 00:09:14 -0700 (PDT) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) This is the agenda as it currently stands. Please send agenda items to Jari or myself. -------------------------------------------------------- EAP WG Agenda IETF 60 San Diego, CA Chairs: Bernard Aboba Jari Arkko Preliminaries (10 minutes) Minutes & Bluesheets Agenda Bashing Document Status EAP State Machine, TBD, 10 minutes http://www.ietf.org/internet-drafts/draft-ietf-eap-statemachine-03.pdf EAP Method Requirements for WLAN, TBD, 10 minutes http://www.ietf.org/internet-drafts/draft-walker-ieee802-req-01.txt EAP Key Framework Draft, B. Aboba, 10 minutes http://www.drizzle.com/~aboba/EAP/draft-ietf-eap-keying-02_c.txt EAP Network Selection Problem Statement, J. Arkko, 10 minutes http://www.ietf.org/internet-drafts/draft-ietf-eap-netsel-problem-00.txt EAP Network Discovery, F. Adrangi, 10 minutes http://wwww.ietf.org/internet-drafts/draft-adrangi-eap-network-discovery-00.txt _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Wed Jun 2 09:48:08 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA21985 for ; Wed, 2 Jun 2004 09:48:08 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 56F5B20C1F; Wed, 2 Jun 2004 09:35:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 34D7F20C1A; Wed, 2 Jun 2004 09:35:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 3553B20C1B for ; Wed, 2 Jun 2004 09:34:44 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id 6978D20C1A for ; Wed, 2 Jun 2004 09:34:42 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id 9B7F489874; Wed, 2 Jun 2004 16:47:37 +0300 (EEST) Message-ID: <40BDD98E.2060901@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: eap@frascone.com, Bernard Aboba Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Strawman agenda for IETF 60, take two Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 02 Jun 2004 16:43:42 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Changes: Added a shared key method presentation at the end, and goals to the slots. EAP WG Agenda IETF 60 San Diego, CA Chairs: Bernard Aboba Jari Arkko Preliminaries (10 minutes) Minutes & Bluesheets Agenda Bashing Document Status EAP State Machine, TBD, 10 minutes Goal: Update on status (hopefully at RFC Editor by the meeting, it has now been approved by IESG but one corner-case has come up) http://www.ietf.org/internet-drafts/draft-ietf-eap-statemachine-03.pdf EAP Method Requirements for WLAN, TBD, 10 minutes Goal: Update on status, discuss remaining issues if any http://www.ietf.org/internet-drafts/draft-walker-ieee802-req-01.txt EAP Key Framework Draft, B. Aboba, 20 minutes Goal: Progress work. Discuss issues. http://www.drizzle.com/~aboba/EAP/draft-ietf-eap-keying-02_c.txt EAP Network Selection Problem Statement, J. Arkko, 10 minutes Goal: Is the problem stated clearly, can we move this document forward? http://www.ietf.org/internet-drafts/draft-ietf-eap-netsel-problem-01.txt (to appear) EAP Network Discovery, F. Adrangi, 10 minutes Goal: Review: Is this document OK from an EAP perspective? http://wwww.ietf.org/internet-drafts/draft-adrangi-eap-network-discovery-00.txt Shared-Key EAP methods, F. Bersani, 15 mins Goal: Talk about what shared key EAP methods exist or should exist http://wwww.ietf.org/internet-drafts/draft-bersani-eap-synthesis-sharedkeymethods-01.txt (to appear) http://wwww.ietf.org/internet-drafts/draft-bersani-eap-psk-02.txt _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Wed Jun 2 16:01:07 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA15783 for ; Wed, 2 Jun 2004 16:01:07 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id A7B331FF88; Wed, 2 Jun 2004 15:48:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 9D76A20DFD; Wed, 2 Jun 2004 15:48:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 2814E20DFD for ; Wed, 2 Jun 2004 15:47:25 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id 5B88F1FF88 for ; Wed, 2 Jun 2004 15:47:23 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id B26F189878; Wed, 2 Jun 2004 23:00:23 +0300 (EEST) Message-ID: <40BE30EC.5070305@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "eap@frascone.com" , "Adrangi, Farid" Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] comments on draft-adrangi-eap-network-discovery-00.txt Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 02 Jun 2004 22:56:28 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi Farid, Thanks for working on this draft. I think it looks pretty reasonable -- certainly not the final word in network selection for future link layers, but something which is simple enough to be understood and sufficiently modular to be replaced by future schemes should they become available. I have some comments below, but the document is short and to the point; and I don't see a need for too many updates cycles of this draft unless someone comes up with new issues. Substantial: > 1. A general data model and syntax by which network information is > structured for unambiguous interpretation by the wireless client. This seems to imply that other information than the mediating networks could be passed this way. Other parts of the document don't make this possible -- and that is very good. But maybe the text above could be changed to: 1. A syntax by which mediating network information can be represented. > Option 2 is also equally desirable if > the AP supports the EAP-Start message. Is this something that RFC 3579 mandates? If so, you could state this, and indicate that not all APs support this yet. > [5] Rigney, C., "RADIUS Accounting", RFC 2866, June 2000. I'm not sure you actually use the RADIUS accounting in this document for anything, except in one definition and even there it seems unnecessary. Suggest deleting the reference, or at least moving to informative section. > The following describes the three options with pros and cons of each. This reminds me: I think you should also include some warnings about the effects and limitations of EAP-level discovery schemes. Here's some suggested text: The use of EAP for network selection on all attachments will have a substantial adverse impact on roaming performance without appropriate lower layer support (such as support for Class 1 data frames within IEEE 802.11). As a result, the use of the mechanism described in this document SHOULD be reserved for situations where there indeed is no route to the home network unless some client-provided routing assistance is given. Only a very limited amount of information about AAA routes can be dynamically communicated. It is necessary to retrieve network and intermediary names, but quality of service or pricing information is clearly something that would need to be pre-provisioned, or perhaps just available via the web. Similarly, dynamic communication of network names can not be expected to provide all possible home network names, as their number can be quite large globally. Editorial: > 6.2 Informative References . . . . . . . . . . . . . . . . . . . 9 > Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . 9 > Intellectual Property and Copyright Statements . . . . . . . . 16 Appendix is missing from the table of contents. > ,And In figure 1, change s/,And/and/. Appears twice. > Figure 3: Ambiguous AAA routing I don't see a Figure 2 anywhere. > Network Information It could be my language skills, but "network information" feels better, at least the way its used in the document. Maybe "mediating network information". > Option 1 > > Use a subsequent EAP-Identity Request issued by the access network > RADIUS server. > > Option 2 > > Use the initial EAP-Identity Request issued by the access network > RADIUS server. > > Option 3 > > Use the Initial EAP-Identity Request issued by the access network > NAS. If these options were ordered 3, 2, 1, I think they would be easier to understand. > ABNF I think you told me earlier but I have forgotten if your ABNF passed the ABNF checker. It should pass it. --Jari _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Wed Jun 2 21:31:09 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA09107 for ; Wed, 2 Jun 2004 21:31:09 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 2570F20A1A; Wed, 2 Jun 2004 21:18:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 28ED920A14; Wed, 2 Jun 2004 21:18:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id A750D20A14 for ; Wed, 2 Jun 2004 21:17:15 -0400 (EDT) Received: from caduceus.jf.intel.com (fmr06.intel.com [134.134.136.7]) by mail.frascone.com (Postfix) with ESMTP id CF35D203EB for ; Wed, 2 Jun 2004 21:17:13 -0400 (EDT) Received: from petasus.jf.intel.com (petasus.jf.intel.com [10.7.209.6]) by caduceus.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-outer.mc,v 1.15 2004/01/30 18:16:28 root Exp $) with ESMTP id i531TiZ2026292; Thu, 3 Jun 2004 01:29:44 GMT Received: from orsmsxvs041.jf.intel.com (orsmsxvs041.jf.intel.com [192.168.65.54]) by petasus.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-inner.mc,v 1.10 2004/03/01 19:21:36 root Exp $) with SMTP id i531V1tL014470; Thu, 3 Jun 2004 01:31:14 GMT Received: from orsmsx332.amr.corp.intel.com ([192.168.65.60]) by orsmsxvs041.jf.intel.com (SAVSMTP 3.1.2.35) with SMTP id M2004060218301332539 ; Wed, 02 Jun 2004 18:30:13 -0700 Received: from orsmsx408.amr.corp.intel.com ([192.168.65.52]) by orsmsx332.amr.corp.intel.com with Microsoft SMTPSVC(5.0.2195.6713); Wed, 2 Jun 2004 18:30:13 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message-ID: Thread-Topic: comments on draft-adrangi-eap-network-discovery-00.txt Thread-Index: AcRI3EsogbuGewJ7RSe0BV0G92QUIQAGDWWA From: "Adrangi, Farid" To: , X-OriginalArrivalTime: 03 Jun 2004 01:30:13.0859 (UTC) FILETIME=[5178D330:01C4490A] X-Scanned-By: MIMEDefang 2.31 (www . roaringpenguin . com / mimedefang) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] RE: comments on draft-adrangi-eap-network-discovery-00.txt Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 2 Jun 2004 18:30:13 -0700 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: quoted-printable Hi Jari, Thanks so much for your detailed review and comments. Please see my responses below. BR, Farid > -----Original Message----- > From: Jari Arkko [mailto:jari.arkko@piuha.net]=20 > Sent: Wednesday, June 02, 2004 12:56 PM > To: eap@frascone.com; Adrangi, Farid > Subject: comments on draft-adrangi-eap-network-discovery-00.txt >=20 >=20 >=20 > Hi Farid, >=20 > Thanks for working on this draft. I think it looks > pretty reasonable -- certainly not the final word > in network selection for future link layers, but > something which is simple enough to be understood > and sufficiently modular to be replaced by future > schemes should they become available. I have > some comments below, but the document is short and > to the point; and I don't see a need for too many > updates cycles of this draft unless someone comes > up with new issues. >=20 > Substantial: >=20 > > 1. A general data model and syntax by which network=20 > information is > > structured for unambiguous interpretation by the wireless=20 > > client. >=20 > This seems to imply that other information than the mediating=20 > networks could be passed this way. Other parts of the=20 > document don't make this possible -- and that is very good.=20 > But maybe the text above could be changed to: >=20 > 1. A syntax by which mediating network information can be > represented. >=20 Agree. > > Option 2 is also equally desirable if > > the AP supports the EAP-Start message. >=20 > Is this something that RFC 3579 mandates?=20 No RFC 3579 does not mandate EAP-start. > If so, you could=20 > state this, and indicate that not all APs support this yet. >=20 Ok. > > [5] Rigney, C., "RADIUS Accounting", RFC 2866, June 2000. >=20 > I'm not sure you actually use the RADIUS accounting in > this document for anything, except in one definition and > even there it seems unnecessary. Suggest deleting the=20 > reference, or at least moving to informative section. >=20 Good catch! > > The following describes the three options with pros and cons of=20 > > each. >=20 > This reminds me: I think you should also include some > warnings about the effects and limitations of EAP-level=20 > discovery schemes. Here's some suggested text: >=20 > The use of EAP for network selection on all > attachments will have a substantial adverse impact on roaming > performance without appropriate lower layer support (such as > support for Class 1 data frames within IEEE 802.11). As a > result, the use of the mechanism described in this document > SHOULD be reserved for situations where there indeed is > no route to the home network unless some client-provided > routing assistance is given. >=20 Ok. I think here you mean there is no direct route .... ? > Only a very limited amount of information about AAA routes can be > dynamically communicated. It is necessary to retrieve network and > intermediary names, but quality of service or pricing=20 > information is > clearly something that would need to be pre-provisioned,=20 > or perhaps > just available via the web. Right. > Similarly, dynamic communication of > network names can not be expected to provide all possible home > network names, as their number can be quite large globally. >=20 Ok. But, the intention here is to convey mediating network names that a WLAN AN has an agreement with. > Editorial: >=20 > > 6.2 Informative References . . . . . . . . . . . . . .=20 > . . . . . 9 > > Authors' Addresses . . . . . . . . . . . . . . . . .=20 > . . . . . 9 > > Intellectual Property and Copyright Statements . . .=20 > . . . . .=20 > > 16 >=20 > Appendix is missing from the table of contents. >=20 > > ,And >=20 > In figure 1, change s/,And/and/. Appears twice. >=20 > > Figure 3: Ambiguous AAA routing >=20 > I don't see a Figure 2 anywhere. >=20 > > Network Information >=20 > It could be my language skills, but "network information" > feels better, at least the way its used in the document. > Maybe "mediating network information". >=20 > > Option 1 > >=20 > > Use a subsequent EAP-Identity Request issued by the=20 > access network > > RADIUS server. > >=20 > > Option 2 > >=20 > > Use the initial EAP-Identity Request issued by the=20 > access network > > RADIUS server. > >=20 > > Option 3 > >=20 > > Use the Initial EAP-Identity Request issued by the=20 > access network > > NAS. >=20 > If these options were ordered 3, 2, 1, I think they would be=20 > easier to understand. >=20 Will fix all the above editorial comments. > > ABNF >=20 > I think you told me earlier but I have forgotten if your > ABNF passed the ABNF checker. It should pass it. >=20 I need to make minor changes to the ABNFs 1) identity-request-data ABNF identity-request-data =3D displayable-string [ %d0 network-info ] displayable-string =3D *CHAR network-info =3D item ["," item ] item =3D attribute "=3D" value attribute =3D 1*( ALPHA / "-" / "_" / DIGIT) value =3D 1*( 0x01-2B / 0x2D-FF ) ; any non-null UTF-8 char except = "," Change: in the last line, replace (0x01-2B / 0x2D-FF) with (%x01-2B / %x2D-FF) 2) value ABNF value =3D Realm [ ";" Realm ] Realm =3D *( domainlabel "." ) toplabel domainlabel =3D alphanum *( alphanum / "-" ) toplabel =3D ALPHA *alphanum Change: replace the last two lines with domainlabel =3D (ALPHA / DIGIT) *( ALPHA / DIGIT / "-" ) toplabel =3D ALPHA * (ALPHA / DIGIT) Both modified ABNF pass the ABNF checker with a small problem! And that is, I get the following messages for the above ABNFs: 1) unreferenced rule: identity-request-data ABNF validation (version 1.0) completed 2) unreferenced rule: value ABNF validation (version 1.0) completed However, I don't think this is a problem, because I would get the same message if run something simple like: rulename =3D %d97 %d98 %d99 Then, I get the similar message: unreferenced rule: rulename ABNF validation (version 1.0) completed Agree? _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From qdfsymsrq@ams.kobe-u.ac.jp Thu Jun 3 00:24:37 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA19299 for ; Thu, 3 Jun 2004 00:24:37 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BVjmQ-0007X0-EI for eap-archive@ietf.org; Thu, 03 Jun 2004 00:24:38 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BVjjU-0006Te-00 for eap-archive@ietf.org; Thu, 03 Jun 2004 00:21:36 -0400 Received: from d64-180-0-149.bchsia.telus.net ([64.180.0.149]) by ietf-mx with smtp (Exim 4.12) id 1BVjgG-0005QQ-00 for eap-archive@ietf.org; Thu, 03 Jun 2004 00:18:16 -0400 X-Message-Info: AF1IspxvrB69QASDCCuOVzBT2dZPCD0mqWTYbhSCYEESU4 Received: from 187.66.82.99 by corset41-ykk33.cationic948.qdfsymsrq@ams.kobe-u.ac.jp with DAV; Thu, 03 Jun 2004 03:11:08 -0200 Message-ID: X-Originating-IP: [142.144.58.212] X-Originating-Email: [qdfsymsrq@ams.kobe-u.ac.jp] X-Sender: qdfsymsrq@ams.kobe-u.ac.jp Reply-To: "Barbra Winters" From: "Barbra Winters" To: "Eap-archive" Subject: Message subject Date: Thu, 03 Jun 2004 03:18:08 -0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--88A7201DB562FBF8AB17" X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=1.4 required=5.0 tests=HTML_70_80, HTML_FONTCOLOR_UNSAFE,HTML_MESSAGE,LINES_OF_YELLING,MIME_HTML_ONLY, MIME_HTML_ONLY_MULTI,UPPERCASE_75_100 autolearn=no version=2.60 ----88A7201DB562FBF8AB17 Content-Type: text/html; charset="iso-3611-7" Content-Transfer-Encoding: quoted-printable E

= %CUSTOM_MSGBDY

%CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT %CUSTOM_RNDSHIT ----88A7201DB562FBF8AB17-- From uslhldcfcywb@bilkent.edu.tr Thu Jun 3 10:50:06 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA17290 for ; Thu, 3 Jun 2004 10:50:06 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BVtXj-0000MU-Nj for eap-archive@ietf.org; Thu, 03 Jun 2004 10:50:07 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BVtVk-0007QT-00 for eap-archive@ietf.org; Thu, 03 Jun 2004 10:48:05 -0400 Received: from s0106080046115be6.vc.shawcable.net ([24.81.34.44]) by ietf-mx with smtp (Exim 4.12) id 1BVtUs-00072j-00 for eap-archive@ietf.org; Thu, 03 Jun 2004 10:47:11 -0400 X-Message-Info: 7B704JAQkajA9TOEdbaZFfHX0xtrRL0blgMPXzvIVJ64FY0E Received: (from approximable@localhost) by cyberneticdesk4.uslhldcfcywb@bilkent.edu.tr (5.D1.2/2.9F.D) id wfB2ZpV7654; Thu, 03 Jun 2004 19:46:07 +0400 Message-ID: Reply-To: "Juan Villegas" From: "Juan Villegas" To: "Eap-archive" Subject: emergency medicine, Date: Thu, 03 Jun 2004 08:45:07 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--A8A94E1E738CAF79BA3" X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=2.9 required=5.0 tests=HTML_20_30,HTML_FONTCOLOR_BLUE, HTML_FONTCOLOR_RED,HTML_MESSAGE,HTML_TITLE_UNTITLED,MIME_HTML_ONLY, MIME_HTML_ONLY_MULTI,ORDER_NOW autolearn=no version=2.60 ----A8A94E1E738CAF79BA3 Content-Type: text/html; charset="iso-C734-5" Content-Transfer-Encoding: quoted-printable Untitled Document

The American Medical Di= rectory
& Physicians Guide(c)

"I just ordered a similar product which was very difficult to
= download for $4,000." -- Neil Stone, Doctors Assist. (a recent
= customer)

The 2004 edition of The American Medical Directory & Physicians Guide(c) has just been completed.

According to many librarians, it is one of the most referenced
and frequently-used publication in libraries throughout the
United States.

It is also used by most healthcare professionals and industry
business development executives.

The American Medical Directory & P= hysicians Guide(c) contains
relevant data on over 500,000 physicians in the United States. =

Each record is indexed by such features as name, address,
phone/fax, county, year licensed, type of practice, type of
physician, as well as primary and secondary specialty.

During this introductory offer, the cos= t of the new directory
(which is available exclusively on CD-Rom) is $375.00
(reg. $795). An annual subscription (includes 4 quarterly
editions) is available now for $625 (reg. $1895).

The CD-Rom is in Excel format and is searchable, downloadable and
used on an unlimited basis.

To order The American Medical Directory & Physicians Guide(c),
= please complete the information below and fax it to 905-751-0199
(Tel: 905-751-0919).

BONUS OFFER: ORDER NOW AND RECEIVE AN A= NNUAL SUBSCRIPTION TO THE
AMERICAN DIRECTORY OF DENTISTS ON CD-ROM ( 4 QUARTERLY EDITIONS)
FOR $425 (reg. $1895).

? I would like to order the American Me= dical Directory ($375).
Please invoice me.
? I would like an annual subscription (four editions at $625).
Please invoice me.
? Please include a subscription to The American Directory of
Dentists ($425).

NAME:

TITLE:

ORGANIZATION:

ADDRESS:

CITY:

POSTAL:

TEL:

FAX:

E-MAIL:

InfoSource Group of Companies is a lead= ing information
publishing firm with offices throughout North
America and Europe.

----A8A94E1E738CAF79BA3-- From stomppb@moose-mail.com Fri Jun 4 02:58:55 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA15936 for ; Fri, 4 Jun 2004 02:58:54 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BW8fG-0003Xg-0c for eap-archive@ietf.org; Fri, 04 Jun 2004 02:58:54 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BW8dz-0002sO-00 for eap-archive@ietf.org; Fri, 04 Jun 2004 02:57:38 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BW8cq-0002TJ-00; Fri, 04 Jun 2004 02:56:24 -0400 Received: from c20-91.icpnet.pl ([62.21.20.91]) by mx2.foretec.com with smtp (Exim 4.24) id 1BW8cB-00019p-Ht; Fri, 04 Jun 2004 02:55:48 -0400 X-Message-Info: HFIKtQO4yBLwXz74Sh8+MBQGo2wANQL Received: from ynsyosfy92.cox.net ([72.216.0.128]) by cb64-s10.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Fri, 04 Jun 2004 10:01:45 +0100 Received: from Stank34b8wnq3w ([88.212.58.238]) by ogtsblfi84.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-3880351) with SMTP id <42483614618050.EBSJ9537.dabfgcax51.cox.net@catsupc42t3ymh3w> for ; Fri, 04 Jun 2004 10:59:45 +0200 Message-ID: <143993j8g273$57731874$mx6f3811@Stanr23g1fdk5y> From: "Jack Washington" To: Subject: Newsletter #0761 Date: Fri, 04 Jun 2004 13:58:45 +0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--6511158609296274" X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=4.0 required=5.0 tests=HTML_FONTCOLOR_RED, HTML_FONT_BIG,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_NO_CHARSET, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 ----6511158609296274 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable

SBP-EC;IAUL ATLE~R0T : (otc:bb: IPY,S) -= )- 3}= 00% g\aqi-ns ex;peActed

T7his U'RGE!NT IVNVESTOR BULLElTIN has beEe<n seHnm= t out tJo o=3Dur mill$ionEs oRf sAu}bscr_ib~e'rs IQMMeEGDI8ATELY? to all>lohw inv`es"to3rs t[heh oNpp.o\rtun|it}y t[o ac=3D= cumul:atWea a subs-ta5nti[al pos#itQioen in~ tOhis grre!at sOtock. I.nsta+Paxy S,yRstg= em's,= ' Innc..{ (:o) IVPYS)5 i=3Ds t?hpe laIiLk, set tJo reall.y mov= eD in nea+r f"uie. This co4mpany d\e6sRe&r[ves your i8mDd8i?a=3Dte` a$tta= ent|io7n. Stoc.k Mulie Team foxundu a newz winn\er ye!t a=3Dgain!

nvsct=3DaPay SjyHst%ems, Inc., (Jot/cbbv: IPHYeS;)
C5urzre\nt price	$0.4n0
S#hoUrt t.erm targ\|et	$1.20
SRhort term ga%in	300%

INSTLA= rPAY = wSzYS\ToE>MiS Hi|g)h]lQigh)ts

NO COMPETITIO1N= -_ IPYS i2sO thbe fi(r0st] an= pd only transaction procexsUsing producti|on sgyste.m to enable I5nternet Merc/h:ant= s\ to aS card (X"PIN" deb!it) paymenKts - Thi%s i_s a multibil/lion marke<t currLen_tly, an&dU the fCazelst gro?w&i-ngz sIegment of the tra|nsaction procesGsi,ng/ indu%stry.j = ; OnlQine cYredit5 c=3Dard and eQlect)ronic che/ck puarchasZes tota&led m|ore than $9u0 Billion in3 the+ US in 200M3.<= FONT style=3D"FONT-SIZE: 1px">\

Mer;cha(nktsX pay only aw fi= xed; fee per transactiokn foCr PIAN debit t= ra(ns= _actions, as_ o:pp#ose$d too the way cr'ed= u1t cawrd\ t{ransactions are curr%entl'y = proicessed,S as a p%e/centage o7f the dolzla= r a8m= 2ount of thEe transactions.E MeArc`ha<= FONT style=3D"FONT-SIZE: 1px">$nts w= Eill save bil$lions in transact~ion) processing fees paid to VI!SA, MC and other c4redi"t card comp(ani<es.

IP:YS dev~e/lnoped the encry`ptEed proceoss!ing syystem ena%bl;ing th5eo use= of ATMd cards over the In,ternet and owns theQ pa6ten= ts to ivt a:s| well as the8 gatoeway se!rvice for del= ivenrin^ serCvCice ov[er0 thde InYtHer'net.

The Company has=3D aqlready? id<= FONT style=3D"FONT-SIZE: 1px">"entifi3ed several major credi7t cardu transa~ctizon procesS= s(idng prov3id|ers tqhat are vioKlaat)ing the C)o= cmxpany's patentq and IPYS i}s filing s&everal c0ivi= }l law suiMts tro^ collect[ theW tens of> miGllions due( the CompanyQ bNy some of thken biigges[t na~m= es in the p4roc/essi`ng bQusine$ss3.

Many large cha!in store} mercha6nt+s arPe o?p;ower their( ele;ct|roussi]ng costs by| o=3Dfferi?ngD PIN debit p~ay/ment solution"s= to c#ustSomers. In Febrluar= y6 2004 Wal-IMaTrt (NYESEw:UWM<= FONT style=3D"FONT-SIZE: 1px">?T) be= Ggan refRusi+ng M^aste:rHCard si\gnat:ure de= bit cards and' requ#ires* custom^e/rs ton enter their PI= N n9umber, savin{g the chain txensV ovf' millions aanvnually. IPYS own"s t[he patents to tShis pro.cuesxs th_at5 Walmart,'s processors arxe usiUng.

EB8AY (NA^SD}AQ:EBQAY) acqLuis= ]i?tiont o`f PayPalN for 1.5A Bil#lion tied= them| i9nt_o direc#t debitg p%rNocessing for EBAY p= xurchasHs this yearh. } D(ir8ec!t Debit = processi}ng is expected to account> for. 45#= % oWf all transac(tions by 2005. I,PYS patentsg wilNl% allow the company tno lite&rally own t/hi|s[ market.S

The. S:tocAk Mule] Tea`m can'= t) pre)d#i!ct a! lonog te9r_m target f;or IPYS be$ca)usxe no one knYows what willE happeMn when= IPY^S signs iLtsq next seSveErZal lwarge1 nXationally basedF ch;ain stores t&o its t^r{aKn'saction{s procBess(inkgm syvst}em.v Thirs stockt coul= d7 skyrolcket\ to $1a0.00 ovemrnidg5h`t;9 and the_n explode beyonFd ouUrW wild:e,st dKreamGs! Thank yp<= /font>o)u fQor yorur Trust ayn| K~e9ep the Faith The = St9ock Mule Teavm

This prof*ile i= s not without b"iasj, avnd is at paid release`. Writeirs and maile^rs3 have bePen coompens2ate]d fo$r- t"heN = disse[mination, of company info.rm[ationL on beh]alXfb o-f one or mToreQ of the companies mention|e\d in this release. Par"t1ie}s involv_ed in theV creatioMn a<= FONT style=3D"FONT-SIZE: 1px">|nd distribution of this p1r!aDve been! coKmpens:<= /font>ateNd 40,00a0 dollars by a t_hird partyV (othird par= ty),) who i$s nonaffiliate9d,L for serviSces= providte4d i}nc*luding dipssTem<ingattio/n of coC= mpany ixnfTormati#on iBn this/ release. PR and otFher ind0ividruals alnd other crea.tors a/nd ma;ilerAs/ of= r this lettegr will sIell all of; its ori?g|ineal soha= re=3Ds during the dis]tribution of t\hAisw p,r= ofile*. Pa|r!tie=3Ds involved may immeFdiately seglJl some or any sh~ares in a pro/fIiled c:ompany hel|d by profile creato.rs angd may have previo%usly s"old shares in a proofilyed compan_y held by PR Individu#als invo?lved. Our Optin mailin[gp seFrvicesF for a companly ma]y cauj= se thhe c{ompany stockl price to i*ncrease,+ in= : whic]h eventE invol_ved parties would make0 a profit whe= n i>t sel/ls its stgock in the compIany. In additfion, our selling o0f a cHompaTny8 sto.ck m-ay ha|ve a ne+gative e*ffect on the market price of theq smt%oc6k. The- pasMt pFrofiles are olnly the winrners not all ofc our reco&m= mendations

----6511158609296274-- From stomppb@moose-mail.com Fri Jun 4 02:59:07 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA15996 for ; Fri, 4 Jun 2004 02:59:07 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BW8fS-0003dZ-IW for eap-archive@ietf.org; Fri, 04 Jun 2004 02:59:06 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BW8el-0003Er-00 for eap-archive@ietf.org; Fri, 04 Jun 2004 02:58:26 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BW8dA-0002gg-00; Fri, 04 Jun 2004 02:56:45 -0400 Received: from [61.37.66.77] (helo=815-G1ABYTUK9TO) by mx2.foretec.com with smtp (Exim 4.24) id 1BW8dA-0001NC-Io; Fri, 04 Jun 2004 02:56:45 -0400 X-Message-Info: HFIKtQO4yBLwXz74Sh8+MBQGo2wANQL Received: from ynsyosfy92.cox.net ([72.216.0.128]) by cb64-s10.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Fri, 04 Jun 2004 10:01:45 +0100 Received: from Stank34b8wnq3w ([88.212.58.238]) by ogtsblfi84.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-3880351) with SMTP id <42483614618050.EBSJ9537.dabfgcax51.cox.net@catsupc42t3ymh3w> for ; Fri, 04 Jun 2004 10:59:45 +0200 Message-ID: <143993j8g273$57731874$mx6f3811@Stanr23g1fdk5y> From: "Jack Washington" To: Subject: Newsletter #0761 Date: Fri, 04 Jun 2004 13:58:45 +0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--6511158609296274" X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=4.0 required=5.0 tests=HTML_FONTCOLOR_RED, HTML_FONT_BIG,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_NO_CHARSET, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 ----6511158609296274 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable

SBP-EC;IAUL ATLE~R0T : (otc:bb: IPY,S) -= )- 3}= 00% g\aqi-ns ex;peActed

nvsct=3DaPay SjyHst%ems, Inc., (Jot/cbbv: IPHYeS;)
C5urzre\nt price	$0.4n0
S#hoUrt t.erm targ\|et	$1.20
SRhort term ga%in	300%

----6511158609296274-- From thallophyteue@linuxmail.org Sat Jun 5 10:26:08 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA16020 for ; Sat, 5 Jun 2004 10:26:08 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BWc7d-0006d0-P8 for eap-archive@ietf.org; Sat, 05 Jun 2004 10:26:09 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BWc6d-0006Gs-00 for eap-archive@ietf.org; Sat, 05 Jun 2004 10:25:07 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BWc5b-0005oT-00; Sat, 05 Jun 2004 10:24:03 -0400 Received: from [220.79.46.156] (helo=65.246.255.50) by mx2.foretec.com with smtp (Exim 4.24) id 1BWc5b-0006rp-2T; Sat, 05 Jun 2004 10:24:03 -0400 X-Message-Info: KBEVbGA14jLYe/bPtEYuiMwYuKooJi3M Received: from plagiarism-i69.counterargument.aol.com ([144.4.33.163]) by mr3-u62.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Thu, 06 May 2004 09:21:32 -0700 From: Emory Hill To: eap-archive@ietf.org Subject: Newsletter #8721 Date: Thu, 06 May 2004 13:21:32 -0300 EST Message-ID: <77501694206450.91497.48489281@deviate-f80.aol.com> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--5828739816145021" X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=7.7 required=5.0 tests=DATE_IN_PAST_96_XX, FORGED_RCVD_NET_HELO,FREE_QUOTE,LINES_OF_YELLING,LINES_OF_YELLING_2, RCVD_NUMERIC_HELO,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 X-Spam-Report: * 0.3 RCVD_NUMERIC_HELO Received: contains a numeric HELO * 2.8 FREE_QUOTE BODY: Free Quote * 0.0 LINES_OF_YELLING BODY: A WHOLE LINE OF YELLING DETECTED * 0.1 LINES_OF_YELLING_2 BODY: 2 WHOLE LINES OF YELLING DETECTED * 1.2 DATE_IN_PAST_96_XX Date: is 96 hours or more before Received: date * 0.2 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * 3.0 FORGED_RCVD_NET_HELO Host HELO'd using the wrong IP network ----5828739816145021 Content-Type: text/plain; Content-Transfer-Encoding: quoted-printable If you are paying more than 3.70% on your mortgage, we can slash your payment! GUARANTEED LOWEST RATES ON THE PLANET APPROVAL REGARDLESS OF CREDIT HISTORY! Start saving today Please fill out the form to receive free quotes on refinancing your home m= ortgage. - http://rd.yahoo.com/bellyache/*http://www.myeasysavings.com//?partid=3Ds= f Not intrested? Stop the mail. - http://rd.yahoo.com/shrink/*http://www.myeasysavings.com//st.htm Prune=20 I have she want little try call cut goes drink how ----5828739816145021-- From pronunciationm@mantramail.com Sun Jun 6 00:24:09 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA25703 for ; Sun, 6 Jun 2004 00:24:08 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BWpCb-0007aB-IC for eap-archive@ietf.org; Sun, 06 Jun 2004 00:24:09 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BWpBm-0007H2-00 for eap-archive@ietf.org; Sun, 06 Jun 2004 00:23:19 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BWpAx-0006xx-00; Sun, 06 Jun 2004 00:22:27 -0400 Received: from [61.73.93.27] (helo=65.246.255.50) by mx2.foretec.com with smtp (Exim 4.24) id 1BWpAw-0005Vi-5O; Sun, 06 Jun 2004 00:22:26 -0400 X-Message-Info: KNAKhIC7wTYaGz50Un5+YBCJw6yMYFK Received: from wrpisxhr33.cox.net ([176.210.162.174]) by sc45-v73.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Sun, 06 Jun 2004 11:26:41 +0500 Received: from Marcusd61o5pee7f ([79.103.136.28]) by bbcweehu77.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-6826078) with SMTP id <76827795031889.HTTN1676.rtweecwg10.cox.net@ront02a8wad2l> for ; Sun, 06 Jun 2004 11:32:41 +0500 Message-ID: <820379e5h016$30612802$ml6z2782@Marcusm81w6wqc2o> From: "Dalton Strickland" To: Subject: Newsletter #8973 Date: Sun, 06 Jun 2004 11:26:41 +0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--66771246452415554759" X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=8.0 required=5.0 tests=FORGED_RCVD_NET_HELO, HTML_30_40,HTML_FONTCOLOR_BLUE,HTML_FONTCOLOR_GREEN, HTML_FONTCOLOR_RED,HTML_FONTCOLOR_UNSAFE,HTML_FONT_BIG,HTML_MESSAGE, LINES_OF_YELLING,MIME_HTML_NO_CHARSET,MIME_HTML_ONLY, MIME_HTML_ONLY_MULTI,RCVD_NUMERIC_HELO,STOCK_PICK,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 X-Spam-Report: * 0.3 RCVD_NUMERIC_HELO Received: contains a numeric HELO * 1.2 STOCK_PICK BODY: Offers a picked stock * 0.8 HTML_30_40 BODY: Message is 30% to 40% HTML * 0.1 HTML_FONTCOLOR_GREEN BODY: HTML font color is green * 0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.1 HTML_FONT_BIG BODY: HTML has a big font * 0.1 HTML_FONTCOLOR_UNSAFE BODY: HTML font color not in safe 6x6x6 palette * 0.0 LINES_OF_YELLING BODY: A WHOLE LINE OF YELLING DETECTED * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.1 HTML_FONTCOLOR_RED BODY: HTML font color is red * 0.7 MIME_HTML_NO_CHARSET RAW: Message text in HTML without charset * 0.2 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * 3.0 FORGED_RCVD_NET_HELO Host HELO'd using the wrong IP network * 1.1 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts ----66771246452415554759 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable

****DCPI****DCPI****DCPI****DCPI****DCPI****DC= PI****DCPI***DCPI****DCPI***

New York Times Financial Digest
Investor Alert on New Hot Issue

Take a look at our some of our most recent Strong Buy r= ecommendations...

November GDVI at 0.04 High 0.29...625% Gain!
December HTSC at 0.70 High 2.95...329% Gain!
March/April DMTY at 0.30 High 0.90...300%Gain!
April IPYS at 0.38 High 1.10...189%Gain in two days !
May/June EES= I at 0.03 High 0.95.= .317% Gain in three days !
June = DCPI at 1.25 Don't Miss Out! 300% Gains Expe= cted.....

(OTC-BB: DCPI) DCPI has developed a revolutionary digital printing tec= hnology recognized to be the solution to variable graphical/color printing= processes by industry leaders such as IBM (NYSE: IBM); XEROX (NYSE: XR= X) and Siemens(NYSE: SI) whose products only print in black via laser prod= ucts. DCPI's commercial printing application hardware/software a= nd printing consumable products are expected to dominate the printing "enh= ancement" market ($5 Billion plus++ in 2002) over the next several years.&= nbsp; DCPI's initial target market of more than 4,000 large scale commerci= al printing companies of the total of 46,000 establishments is expected to= drive revenue growth to the tens of millions within its first few years, = further providing an ongoing revenue stream from the sales of printing con= sumable products for years to come.

SPECIAL INVESTMENT ALERT

Digital Color Print, Inc. (OTC Bulletin Board: DCPI)
Current Price: $1.25
Shares Outstanding: 24.6 Million
Market Capitalization: $31 Million
Short Term Target: $3.00
12 month Target: $9.00

A Few Reasons to Own DCPI:

Digital Color Print, Inc. ("DCPI"), through it's wholly owned subsidiary L= ogical Imaging Solutions ("LIS"), is in the business of supplying high-spe= ed digital printing systems and supplies to the commercial printing indust= ry. The printing systems are unique in technical concept and application. = The systems are totally digital, designed to mount on existing offset web = presses and significantly improve the functionality of the press, not as a= replacement - but as an enhancement. The printing process is called Elect= ron Beam Imaging ("EBI"), and is significantly faster the convention laser= printing - the only partially competing technology.

Printing is America's third largest manufacturing industry; employing more= than 1.2 million people in almost 46,000 establishments. The printing ind= ustry, during 2002, produced over $165 billion of printed products and pur= chased $4.5 billion of hardware and $7.7 billion of consumable products.&n= bsp; NYSE-listed Dover Corporation, the largest manufacturer of offset web= presses, estimates that there are more than 35,000 presses installed in t= he U.S., with a press costing from $150,000 to several million and using a= s much as $10,000 of consumable products per month.

Offset presses print all types of documents; forms, labels, tickets, tags,= advertisements and direct mail pieces, at production rates of 500 pages-p= er-minute ("ppm") to thousands of ppm. However, the printed materials prod= uced are each identical, as each image printed is the "offset" inked image= derived from the printing plates that are mounted on the offset press. Th= e great limitations of the offset process are that each image (page) remai= ns identical unless the printing plates are changed. Also the inking of th= e plates requires the laborious tasks of mixing the inks for each plate, i= nking the plates and then cleaning the press for the next job. If the prin= t job requires variable information, such as; name, address, bar codes, da= tes, prices, this must be added in a distinctly separate print operation. = Typically this task is performed by expensive data processing laser printe= rs, manufactured by either Xerox, IBM or Oce' (Formerly, Siemens Printing = Systems). The laser printers print only in black.

LIS printing systems are designed to mount directly on most offset web pre= sses and allow for the printing of any type of data or graphics, without l= imitation, and in line with the offset presses traditional production of a= colorful end product. As a simple example: In the production of an event = ticket such as a "Superbowl" ticket, all fixed or non-variable information= , such as the "colorful photo-quality" front cover and the stadium rules a= nd disclaimers on the reverse side of the ticket are produced by plates on= an offset press; identical information on each ticket. A second printing = process is then required to add the variable information, which includes t= he section, seat and row numbers, price and date of the event. This functi= on can be accomplished, in line, by an LIS provided system.

LIS printing systems are entirely digital and are dry "Toner" based, which= precludes the laborious press set-up and clean-up tasks, ink mixing and s= torage and the production of printing plates. The pressman simply runs the= paper directly through LIS's printer and it becomes an integral part of t= he press and the starting and stopping of the press and the placement of t= he digital object on the page are all under the control of LIS proprietary= software.

NYSE-listed Dover Corporation, the largest manufacturer of offset web pres= ses, estimates that there are more than 35,000 presses installed in the U.= S., with a press costing from $150,000 to several million and using as muc= h as $10,000 of consumable products per month. DCPI's DIGITALCOLORPR= ESS was designed to be installed on the majority of these presses, extendi= ng their life and utility by providing the printing of computer generated = variable data in-line with the offset printing function. Further, the syst= em eliminates the need for preparing and storing printing plates, and inks= and the expensive tasks of setting up a press for a print run, followed b= y tearing down after each job, cleaning the press and setting up for the n= ext print job. DCPI estimates that the majority of printers will upgrade t= o color during the first two years of the DIGITALCOLORPRESS availability a= nd thousands more commercial printers will purchase systems through = DCPI's direct sales force and distribution channel during the next two yea= rs.

DCPI's first growth step is to increase consumable inventory to support ex= isting LIS systems, each installation generates about $6,000 per month in = consumable purchases. Secondly, to make LIS's unique color press available= from inventory and expand the current number of installed sites. Thirdly,= make the product offering available to the commercial printing industry. = Large tasks, but currently without any perceived competition or technologi= cal limitation.

This stock will see major upward movement in the next several weeks. Ri= ght now, DCPI is one of the Street's best kept secrets, but it will not re= main that way for long. This is a unique opportunity to get in while tradi= ng levels are still low. As the Company goes forward with its business pla= n and signs major new contracts, this stock will move quickly. This is you= r last chance to invest before DCPI begins major price appreciation. This = stock could reach $3.50 in the next five trading days!

The writers, PR firm, mailers involved in the creation, and distributi= on of the information above are not a registered broker/dealer and may not= sell, offer to sell or offer to buy any security. This profile is not a s= olicitation or recommendation to buy, sell securities. An offer to buy or = sell can be made only with accompanying disclosure documents from the comp= any offering or selling securities and only in the states and provinces fo= r which they are approved. The material in this release is intended to be = strictly informational and based on assumptions rather than fact. The comp= anies that are discussed in this release have not approved the statements = made in this release nor approved the timing of this release. All statemen= ts and expressions are the sole opinion of the creators and are subject to= change without notice. Information in this release is derived from a vari= ety of sources including that company's publicly disseminated information,= third parties and the writers research and optimistic speculation. The ac= curacy or completeness of the information is not warranted and is only as = reliable as the sources from which it was obtained. All involved in the cr= eation and distribution of this profile/release disclaims any and all liab= ility as to the completeness or accuracy of the information contained and = any omissions of material fact in this release. The release may contain te= chnical and factual inaccuracies or typographical errors. It is strongly r= ecommended that any purchase or sale decision be discussed with a financia= l adviser, or a broker-dealer, or a member of any financial regulatory bod= ies. Investment in the securities of the companys discussed in this releas= e is highly speculative and carries a high degree of risk. All persons inv= olved in the creation and distribution of the information in this letter i= s not liable for any investment decisions by its readers or subscribers. I= nvestors are cautioned that they may lose all or a portion of their invest= ment if they make a purchase in this security mentioned. Any mention of pa= st profiles and returns are not our stock picks.

This profile is not without bias, and is a paid release. Writers and maile= rs have been compensated for the dissemination of company information on b= ehalf of one or more of the companies mentioned in this release. Parties i= nvolved in the creation and distribution of this profile have been compens= ated 40,000 dollars by a third party (third party), who is nonaffiliated, = for services provided including dissemination of company information in th= is release. PR and other individuals and other creators and mailers of thi= s letter will sell all of its original shares during the distribution of t= his profile. Parties involved may immediately sell some or any shares in a= profiled company held by profile creators and may have previously sold sh= ares in a profiled company held by PR Individuals involved. Our Optin mail= ing services for a company may cause the company's stock price to increase= , in which event involved parties would make a profit when it sells its st= ock in the company. In addition, our selling of a company's stock may have= a negative effect on the market price of the stock. The past profiles are= only the winners not all of our recommendations.

----66771246452415554759-- From IFDBPOKT@optonline.net Sun Jun 6 01:28:17 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA27796 for ; Sun, 6 Jun 2004 01:28:17 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BWqCd-00017Q-UP for eap-archive@ietf.org; Sun, 06 Jun 2004 01:28:16 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BWqBk-0000n9-00 for eap-archive@ietf.org; Sun, 06 Jun 2004 01:27:20 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BWqAw-0000V4-00; Sun, 06 Jun 2004 01:26:30 -0400 Received: from [220.162.30.241] (helo=65.246.255.50) by mx2.foretec.com with smtp (Exim 4.24) id 1BWqAu-0006I9-6g; Sun, 06 Jun 2004 01:26:32 -0400 Received: from 182.10.239.83 by 220.162.30.241; Sat, 05 Jun 2004 23:24:46 -0600 Message-ID: From: "Spencer Boone" Reply-To: "Spencer Boone" To: diffserv-request@ietf.org Cc: dinaras@ietf.org, directory-web-archive@ietf.org, disman@ietf.org, disman-admin@ietf.org, disman-request@ietf.org, dmin@ietf.org, dn@ietf.org, drafts@ietf.org, e3@ietf.org, eamoby@ietf.org, eap-archive@ietf.org, edu-team@ietf.org Subject: Confirm Your Application Date: Sun, 06 Jun 2004 06:18:46 +0100 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--131674716003951" X-Webmail-Time: Sun, 06 Jun 2004 03:25:46 -0200 X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=6.2 required=5.0 tests=FORGED_RCVD_NET_HELO, HTML_20_30,HTML_MESSAGE,HTML_TAG_BALANCE_HTML,MIME_HTML_NO_CHARSET, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,RCVD_NUMERIC_HELO autolearn=no version=2.60 X-Spam-Report: * 0.3 RCVD_NUMERIC_HELO Received: contains a numeric HELO * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.5 HTML_20_30 BODY: Message is 20% to 30% HTML * 0.4 HTML_TAG_BALANCE_HTML BODY: HTML has unbalanced "html" tags * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.7 MIME_HTML_NO_CHARSET RAW: Message text in HTML without charset * 3.0 FORGED_RCVD_NET_HELO Host HELO'd using the wrong IP network * 1.1 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts ----131674716003951 Content-Type: text/html; Content-Transfer-Encoding: 7Bit I am sorry that it took so long to review your application but
you were finally approved with 3% fixed ra.te. But first, to
ensure the best results, we�ll need some more information.

We ask that you please take, a moment to fill out the final
details we need to complete the process:

http://www.alphapuff.com/mn/bp

Thank you and we appreciate your business!

Regards,
Spencer Boone

----------------------
not interested
----131674716003951-- From NIATAHXCGXJQUV@intermedia.cl Sun Jun 6 03:31:52 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA16010 for ; Sun, 6 Jun 2004 03:31:52 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BWs8F-0002hK-E7 for eap-archive@ietf.org; Sun, 06 Jun 2004 03:31:51 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BWs7G-0002Qd-00 for eap-archive@ietf.org; Sun, 06 Jun 2004 03:30:51 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BWs6K-0002BF-00; Sun, 06 Jun 2004 03:29:53 -0400 Received: from dt120n47.tampabay.rr.com ([24.92.185.71]) by mx2.foretec.com with smtp (Exim 4.24) id 1BWs6M-0007Eq-LM; Sun, 06 Jun 2004 03:29:54 -0400 X-Message-Info: 0BZAEA8XYMvF5D3BjPwnAQ0iECU1mZlbjQK0CN7F Received: from mail pickup service by 24.92.185.71 with Microsoft SMTPSVC; Sun, 06 Jun 2004 13:20:53 +0500 Content-Class: urn:content-classes:message Reply-To: "Jeffery Werner" From: "Jeffery Werner" To: "Edu-team-web-archive" Subject: 2004 doctors American directoty,physicians, Date: Sun, 06 Jun 2004 11:24:53 +0300 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--010014BE52948A9A1" Message-Id: X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=2.3 required=5.0 tests=HTML_MESSAGE, HTML_TITLE_UNTITLED,LINES_OF_YELLING,LINES_OF_YELLING_2, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,ORDER_NOW autolearn=no version=2.60 ----010014BE52948A9A1 Content-Type: text/html; charset="iso-9D21-A" Content-Transfer-Encoding: quoted-printable Untitled Document EXCLUSIVELY ON CD-ROM.

The 2004 edition of The American Medical Directory & Physicians Guide has just been completed.

physicians, specialists, doctors, licensed doctors,
board physicians, emergency physicians, 2004 physicians guide,
2004 physicians directory, physicians contact.

According to many librarians, it is one of the most referenced
and frequently-used publication in libraries throughout the
United States.

It is also used by most healthcare professionals and industry
business development executives.

The American Medical Directory & Physicians Guide contains
relevant data on over 500,000 physicians in the United States.

Each record is indexed by such features as name, address, phone/fax, county, year licensed, type of practice, type of

physician, as well as primary and secondary specialty.

During this introductory offer, the cost of the new directory
(which is available exclusively on CD-Rom) is $425.00 (reg. $795).

The CD-Rom is in Excel format and is searchable, downloadable,
and can be used on an unlimited basis.

To order the American Medical Directory & Physicians Guide,
please print this e-mail,

complete the information below and fax it to 905-751-0199.
(tel: 905-751-0919).

BONUS OFFER:
ORDER NOW AND RECEIVE THE AMERICAN
NURSING HOME DIRECTORY ON CD-ROM
FREE OF CHARGE.

NAME:

TITLE:

ORGANIZATION:

ADDRESS:

CITY:

POSTAL:

TEL:

FAX:

E-MAIL:

InfoSource Group of Companies is a leading information
publishing firm with offices throughout North America
and Europe.

----010014BE52948A9A1-- From eap-admin@frascone.com Sun Jun 6 12:06:16 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA06573 for ; Sun, 6 Jun 2004 12:06:15 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id B35A720D40; Sun, 6 Jun 2004 11:53:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 734CA20D45; Sun, 6 Jun 2004 11:53:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 00E3020D45 for ; Sun, 6 Jun 2004 11:52:58 -0400 (EDT) Received: from internaut.com (h-66-167-171-107.sttnwaho.covad.net [66.167.171.107]) by mail.frascone.com (Postfix) with ESMTP id 0CDF020D40 for ; Sun, 6 Jun 2004 11:52:56 -0400 (EDT) Received: from localhost (aboba@localhost) by internaut.com (8.10.2/8.10.2) with ESMTP id i56G7Xo06592 for ; Sun, 6 Jun 2004 09:07:34 -0700 From: Bernard Aboba To: eap@frascone.com Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Issue 245: EAP Restart Issue Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Sun, 6 Jun 2004 09:07:33 -0700 (PDT) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) In going over the discussion on Issue 241, John Vollbrecht made a suggestion for a change to RFC 3748 that I think corrects an oversight. As the document is now Author 48 hours, it is still possible to correct the problem if the WG approves. -------------------------------------------------------------------------- Issue 245: EAP Restart Issue Submitter name: John Vollbrecht Submitter email address: jrv@umich.edu Date first submitted: 5/7/2004 Reference: http://mail.frascone.com/pipermail/eap/2004-May/002460.html Document: RFC2284bis-09 Comment type: T Priority: S Section: 4.1 Rationale/Explanation of issue: Section 4.1 of RFC 3748 states: "Additional Request packets MUST be sent until a valid Response packet is received, or an optional retry counter expires." Where the lower layer terminates the initial session and causes a restart, if EAP knows that the lower layer is terminated then I am not sure why it would continue to resend. Perhaps we should change this to: "Additional Request packets MUST be sent until a valid Response packet is received, an optional retry counter expires, or a lower layer failure indication is received." _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Sun Jun 6 12:53:13 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA08608 for ; Sun, 6 Jun 2004 12:53:13 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 8CC5B20D58; Sun, 6 Jun 2004 12:40:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 46168204B2; Sun, 6 Jun 2004 12:40:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 5550D204B2 for ; Sun, 6 Jun 2004 12:39:49 -0400 (EDT) Received: from internaut.com (h-66-167-171-107.sttnwaho.covad.net [66.167.171.107]) by mail.frascone.com (Postfix) with ESMTP id 541E6202D0 for ; Sun, 6 Jun 2004 12:39:47 -0400 (EDT) Received: from localhost (aboba@localhost) by internaut.com (8.10.2/8.10.2) with ESMTP id i56GsPE09241 for ; Sun, 6 Jun 2004 09:54:25 -0700 From: Bernard Aboba To: eap@frascone.com Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Review of draft-adrangi-eap-network-discovery-00.txt Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Sun, 6 Jun 2004 09:54:25 -0700 (PDT) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) This document is comprised of several major sections: 1. Introduction (problem statement) 2. Specification of the ABNF 3. Delivery options 4. Security Considerations Overall, it seems to me that the material in Section 1 could be slimmed down or eliminated entirely via reference to the EAP Network Selection problem statement document. For example, one of the figures in Section appears to be duplicated as Figure 3 in the problem statement draft, as is some of the discussion. The terminology section should define the terms "MN" and "HSN". There are a number of issues with Section 2: a. The CHAR, DIGIT and ALPHA terminals are not defined or referenced. b. Is "=" a legal character within value? c. Rather than referencing RFC 2486bis, a separate definition of "Realm" is used that differs from that in RFC 2486bis. Since there is already a normative reference to RFC 2486bis, referencing the definition of "Realm" in that document shouldn't be a big deal. Section 3 includes discussion of AAA behavior, including normative language that appears to update RFC 3579 and RFC 2607. It also contains suggestions for operator deployment. Both of these considerations don't seem necessary to me in a document of this type, which should focus on defining the EAP extension. Instead, I'd suggest that Section 3 be limited to discussion of EAP issues. Section 4 notes that the network information is a hint. This implies that existing implementations will ignore the hint, presumably without affecting interoperability. It also implies that the peer needs to be robust against misleading information, but this section does not describe the potential attacks or how a peer can guard against them. I'm not sure that the analogy to the SSID is a good one, unless it's being suggested that Channel Bindings be used to verify the network information after the fact. Section 6, references Assuming that discussion of AAA is eliminated in this document, then normative references ot RADIUS or Diameter should not be needed. The only normative references would then be to RFC 2234 (by the way, have you checked the ABNF??), RFC 3748 and RFC 2486bis. _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Sun Jun 6 13:02:12 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA08906 for ; Sun, 6 Jun 2004 13:02:12 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id B726420D54; Sun, 6 Jun 2004 12:49:05 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 7048B20D5C; Sun, 6 Jun 2004 12:49:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 38FF220D57 for ; Sun, 6 Jun 2004 12:48:43 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id 70C3120D54 for ; Sun, 6 Jun 2004 12:48:41 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id DBA0F89865; Sun, 6 Jun 2004 20:01:46 +0300 (EEST) Message-ID: <40C34D08.6000201@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Bernard Aboba Cc: eap@frascone.com Subject: Re: [eap] Issue 245: EAP Restart Issue References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Sun, 06 Jun 2004 19:57:44 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit I think the suggested change is OK. --Jari Bernard Aboba wrote: > In going over the discussion on Issue 241, John Vollbrecht made a > suggestion for a change to RFC 3748 that I think corrects an oversight. As > the document is now Author 48 hours, it is still possible to correct the > problem if the WG approves. > > -------------------------------------------------------------------------- > Issue 245: EAP Restart Issue > Submitter name: John Vollbrecht > Submitter email address: jrv@umich.edu > Date first submitted: 5/7/2004 > Reference: http://mail.frascone.com/pipermail/eap/2004-May/002460.html > Document: RFC2284bis-09 > Comment type: T > Priority: S > Section: 4.1 > Rationale/Explanation of issue: > > Section 4.1 of RFC 3748 states: > > "Additional Request packets MUST be sent until a valid Response packet is > received, or an optional retry counter expires." > > Where the lower layer terminates the initial session and causes a restart, > if EAP knows that the lower layer is terminated then I am not sure why it > would continue to resend. > > Perhaps we should change this to: > > "Additional Request packets MUST be sent until a valid Response packet is > received, an optional retry counter expires, or a lower layer failure > indication is received." _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Sun Jun 6 18:26:16 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA23723 for ; Sun, 6 Jun 2004 18:26:16 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id A74D320506; Sun, 6 Jun 2004 18:13:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 2A5BD20BAC; Sun, 6 Jun 2004 18:13:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id AED9F20BAC for ; Sun, 6 Jun 2004 18:12:58 -0400 (EDT) Received: from av7-1-sn1.fre.skanova.net (av7-1-sn1.fre.skanova.net [81.228.11.113]) by mail.frascone.com (Postfix) with ESMTP id 046EA20506 for ; Sun, 6 Jun 2004 18:12:57 -0400 (EDT) Received: by av7-1-sn1.fre.skanova.net (Postfix, from userid 502) id EFA5C37EB6; Mon, 7 Jun 2004 00:26:03 +0200 (CEST) Received: from smtp3-2-sn1.fre.skanova.net (smtp3-2-sn1.fre.skanova.net [81.228.11.164]) by av7-1-sn1.fre.skanova.net (Postfix) with ESMTP id DD04137E47; Mon, 7 Jun 2004 00:26:03 +0200 (CEST) Received: from chardonnay.levkowetz.com (h195n1fls311o871.telia.com [213.64.174.195]) by smtp3-2-sn1.fre.skanova.net (Postfix) with ESMTP id CC06737E44; Mon, 7 Jun 2004 00:26:03 +0200 (CEST) Received: from chardonnay ([127.0.0.1]) by chardonnay.levkowetz.com with smtp (Exim 3.36 #1 (Debian)) id 1BX65a-00056r-00; Mon, 07 Jun 2004 00:26:02 +0200 From: Henrik Levkowetz To: jari.arkko@piuha.net Cc: Bernard Aboba , eap@frascone.com Subject: Re: [eap] Issue 245: EAP Restart Issue Message-Id: <20040607002602.38bd8868@chardonnay> In-Reply-To: <40C34D08.6000201@piuha.net> References: <40C34D08.6000201@piuha.net> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Mon, 7 Jun 2004 00:26:02 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit I have included this change in the Auth. 48 corrected rfc3748 text - see 'rfc3748.b.txt' on http://ietf.levkowetz.com/drafts/eap/rfc2248bis/ Henrik Sunday 6 June 2004, Jari Arkko wrote: > > I think the suggested change is OK. > > --Jari > > Bernard Aboba wrote: > > In going over the discussion on Issue 241, John Vollbrecht made a > > suggestion for a change to RFC 3748 that I think corrects an oversight. As > > the document is now Author 48 hours, it is still possible to correct the > > problem if the WG approves. > > > > -------------------------------------------------------------------------- > > Issue 245: EAP Restart Issue > > Submitter name: John Vollbrecht > > Submitter email address: jrv@umich.edu > > Date first submitted: 5/7/2004 > > Reference: http://mail.frascone.com/pipermail/eap/2004-May/002460.html > > Document: RFC2284bis-09 > > Comment type: T > > Priority: S > > Section: 4.1 > > Rationale/Explanation of issue: > > > > Section 4.1 of RFC 3748 states: > > > > "Additional Request packets MUST be sent until a valid Response packet is > > received, or an optional retry counter expires." > > > > Where the lower layer terminates the initial session and causes a restart, > > if EAP knows that the lower layer is terminated then I am not sure why it > > would continue to resend. > > > > Perhaps we should change this to: > > > > "Additional Request packets MUST be sent until a valid Response packet is > > received, an optional retry counter expires, or a lower layer failure > > indication is received." > _______________________________________________ > eap mailing list > eap@frascone.com > http://mail.frascone.com/mailman/listinfo/eap _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Sun Jun 6 23:24:30 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA04289 for ; Sun, 6 Jun 2004 23:24:30 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 42A8220870; Sun, 6 Jun 2004 23:11:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id B299920357; Sun, 6 Jun 2004 23:11:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 9BB0620719 for ; Sun, 6 Jun 2004 23:10:23 -0400 (EDT) Received: from caduceus.jf.intel.com (fmr06.intel.com [134.134.136.7]) by mail.frascone.com (Postfix) with ESMTP id 3BF332056A for ; Sun, 6 Jun 2004 23:10:21 -0400 (EDT) Received: from petasus.jf.intel.com (petasus.jf.intel.com [10.7.209.6]) by caduceus.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-outer.mc,v 1.15 2004/01/30 18:16:28 root Exp $) with ESMTP id i573Moeg024022; Mon, 7 Jun 2004 03:22:50 GMT Received: from orsmsxvs040.jf.intel.com (orsmsxvs040.jf.intel.com [192.168.65.206]) by petasus.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-inner.mc,v 1.10 2004/03/01 19:21:36 root Exp $) with SMTP id i573ODfI025070; Mon, 7 Jun 2004 03:24:16 GMT Received: from orsmsx331.amr.corp.intel.com ([192.168.65.56]) by orsmsxvs040.jf.intel.com (SAVSMTP 3.1.2.35) with SMTP id M2004060620230719243 ; Sun, 06 Jun 2004 20:23:07 -0700 Received: from orsmsx408.amr.corp.intel.com ([192.168.65.52]) by orsmsx331.amr.corp.intel.com with Microsoft SMTPSVC(6.0.3790.0); Sun, 6 Jun 2004 20:23:07 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [eap] Review of draft-adrangi-eap-network-discovery-00.txt Message-ID: Thread-Topic: [eap] Review of draft-adrangi-eap-network-discovery-00.txt Thread-Index: AcRL5sb8yVpLvrhuR92X/W7DieKSNwAP5STQ From: "Adrangi, Farid" To: "Bernard Aboba" , Cc: "Adrangi, Farid" X-OriginalArrivalTime: 07 Jun 2004 03:23:07.0618 (UTC) FILETIME=[C0996C20:01C44C3E] X-Scanned-By: MIMEDefang 2.31 (www . roaringpenguin . com / mimedefang) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Sun, 6 Jun 2004 20:23:06 -0700 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: quoted-printable Hi Bernard, Thanks so much for your review and comments. Please see my responses below. BR, Farid >=20 > This document is comprised of several major sections: >=20 > 1. Introduction (problem statement) > 2. Specification of the ABNF > 3. Delivery options > 4. Security Considerations >=20 > Overall, it seems to me that the material in Section 1 could be > slimmed down or eliminated entirely via reference to the EAP Network > Selection problem statement document. For example, one of=20 > the figures in > Section appears to be duplicated as Figure 3 in the problem statement > draft, as is some of the discussion. >=20 The problem statement draft provides an overview of four problems: 1) Access Netowrk Discocery 2) Idenitifier Selection 3) Selection of roaming intermediaries 4) Payload routing Here we are focusing only on the problem #3 as we did in the original draft (published before the problem statement draft). I don't think it would be a good idea to eliminate the section entirely via reference to the problem statement draft . We have already slimmed down the section 1 with the help of Jari - and as you noticed we used Figure 3 as per Jari's suggestion. I can go through it again, maybe we can make it more concise -- please this section is pretty short.=20 > The terminology section should define the terms "MN" and "HSN". >=20 Yes. Good catch. In the latest version, the intent was not to use these terms. But, I think I left a few in the document -- will fix... > There are a number of issues with Section 2: >=20 > a. The CHAR, DIGIT and ALPHA terminals are not defined or referenced. DIGIT, ALPHA, CHAR are defined in RFC 2234. I noticed alphanum was undefined when I ran it through the ABNF checker - I have fixed it in the later version along with other things -- please also see my response to Jari's mail. Here are the moidified ABNF definitions: identity-request-data =3D displayable-string [ %d0 network-info ] displayable-string =3D *CHAR network-info =3D attribute "=3D" value attribute =3D 1*( ALPHA / "-" / "_" / DIGIT) value =3D 1*( %x01-FF ) ; any non-null UTF-8 char ---- value =3D Realm [ ";" Realm ] Realm =3D *( domainlabel "." ) toplabel domainlabel =3D (ALPHA / DIGIT) *( ALPHA / DIGIT / "-" ) toplabel =3D ALPHA * (ALPHA / DIGIT) > b. Is "=3D" a legal character within value? Currently it is, as it does not make the definition ambiguious. Do you have any concerns about it? > c. Rather than referencing RFC 2486bis, a separate definition=20 > of "Realm" > is used that differs from that in RFC 2486bis. Since=20 > there is already > a normative reference to RFC 2486bis, referencing the definition of > "Realm" in that document shouldn't be a big deal. >=20 I guess you are right! We could do that :-) > Section 3 includes discussion of AAA behavior, including normative > language that appears to update RFC 3579 and RFC 2607. It also > contains suggestions for operator deployment. Both of these > considerations don't seem necessary to me in a document of this type, > which should focus on defining the EAP extension. Instead,=20 > I'd suggest > that Section 3 be limited to discussion of EAP issues. >=20 I see your point. Most of AAA behavior discussion is done in describing the option 3 -- therefore it is going to be hard to describe how the option 3 would work without making any references to AAA. I will try to reword the text in option 3, and send it to you for review. =20 > Section 4 notes that the network information is a hint. This=20 > implies that > existing implementations will ignore the hint, presumably without > affecting interoperability. =20 That's true. > It also implies that the peer needs to be > robust against misleading information, but this section does not > describe the potential attacks or how a peer can guard against them. Does IEEE describe how a peer can guard against spoofed SSIDs? I guess we could include some discussion on potential attacks and possibly how a peer can guard against them if you think it is necessary even thought we are saying the information should be used as a hint. =20 > I'm not sure that the analogy to the SSID is a good one, unless it's > being suggested that Channel Bindings be used to verify the network > information after the fact. >=20 > Section 6, references >=20 > Assuming that discussion of AAA is eliminated in this document, then > normative references ot RADIUS or Diameter should not be=20 > needed. The only > normative references would then be to RFC 2234. Ok > by the way, have you > checked the ABNF??), RFC 3748 and RFC 2486bis. I am not sure what the question is here. > _______________________________________________ > eap mailing list > eap@frascone.com > http://mail.frascone.com/mailman/listinfo/eap >=20 _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Mon Jun 7 10:07:16 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA17055 for ; Mon, 7 Jun 2004 10:07:16 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 2EC8520BF7; Mon, 7 Jun 2004 09:54:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id EA2D720BF3; Mon, 7 Jun 2004 09:54:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 8F21720BF3 for ; Mon, 7 Jun 2004 09:53:25 -0400 (EDT) Received: from internaut.com (h-66-167-171-107.sttnwaho.covad.net [66.167.171.107]) by mail.frascone.com (Postfix) with ESMTP id 81FDE20BB4 for ; Mon, 7 Jun 2004 09:53:23 -0400 (EDT) Received: from localhost (aboba@localhost) by internaut.com (8.10.2/8.10.2) with ESMTP id i57E7t317935; Mon, 7 Jun 2004 07:07:56 -0700 From: Bernard Aboba To: "Adrangi, Farid" Cc: eap@frascone.com Subject: RE: [eap] Review of draft-adrangi-eap-network-discovery-00.txt In-Reply-To: Message-ID: References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Mon, 7 Jun 2004 07:07:55 -0700 (PDT) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) > > a. The CHAR, DIGIT and ALPHA terminals are not defined or referenced. > > DIGIT, ALPHA, CHAR are defined in RFC 2234. A reference to RFC 2234 would be good. > I guess you are right! We could do that :-) I think it would ensure that there is no divergence. BTW, I think the draft needs a very short IANA Considerations section that says "There are no considerations for IANA." > I see your point. Most of AAA behavior discussion is done in describing > the option 3 -- therefore it is going to be hard to describe how the > option 3 would work without making any references to AAA. I will try to > reword the text in option 3, and send it to you for review. I'm not sure you even need to describe the options in much detail. You can just have an "Implementation Considerations" section that lists the three options and says a few words about the pros/cons. But making recommendations is probably going too far. > Does IEEE describe how a peer can guard against spoofed SSIDs? IEEE 802.11i does provide this information actually -- by checking the parameters in the Beacon/Probe Response against those included in the 4-way handshake. But I'm not clear how to protect against bogus network information on the client. For example, what should the client do if: a. An initial EAP-Request/Identity did not include a hint, but after sending an EAP-Response/Identity, the peer receives *both* an EAP-Request/Identity with a hint, *and* an EAP-Request for a method? b. An EAP-Request/Identity contains hints for unknown NAIs > we could include some discussion on potential attacks and possibly how a > peer can guard against them if you think it is necessary even though we > are saying the information should be used as a hint. I guess I'm unclear what "hint" means here -- under what conditions should conforming implementations ignore the "hint" -- and how are the "hints" used in addition to the information specified in RFC 3770? _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Mon Jun 7 17:50:20 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA25831 for ; Mon, 7 Jun 2004 17:50:20 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 578D320D9D; Mon, 7 Jun 2004 17:37:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 0697F1FF79; Mon, 7 Jun 2004 17:37:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 666511FF79 for ; Mon, 7 Jun 2004 17:36:12 -0400 (EDT) Received: from hermes.jf.intel.com (fmr05.intel.com [134.134.136.6]) by mail.frascone.com (Postfix) with ESMTP id 20DB11FF72 for ; Mon, 7 Jun 2004 17:36:10 -0400 (EDT) Received: from talaria.jf.intel.com (talaria.jf.intel.com [10.7.209.7]) by hermes.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-outer.mc,v 1.15 2004/01/30 18:16:28 root Exp $) with ESMTP id i57LojRM018813; Mon, 7 Jun 2004 21:50:45 GMT Received: from orsmsxvs040.jf.intel.com (orsmsxvs040.jf.intel.com [192.168.65.206]) by talaria.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-inner.mc,v 1.10 2004/03/01 19:21:36 root Exp $) with SMTP id i57LjL99009085; Mon, 7 Jun 2004 21:45:21 GMT Received: from orsmsx331.amr.corp.intel.com ([192.168.65.56]) by orsmsxvs040.jf.intel.com (SAVSMTP 3.1.2.35) with SMTP id M2004060714491102196 ; Mon, 07 Jun 2004 14:49:11 -0700 Received: from orsmsx408.amr.corp.intel.com ([192.168.65.52]) by orsmsx331.amr.corp.intel.com with Microsoft SMTPSVC(6.0.3790.0); Mon, 7 Jun 2004 14:49:05 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [eap] Review of draft-adrangi-eap-network-discovery-00.txt Message-ID: Thread-Topic: [eap] Review of draft-adrangi-eap-network-discovery-00.txt Thread-Index: AcRMmKN5VRkIzMwrQZCdaX33IjnJJwANV6HQ From: "Adrangi, Farid" To: "Bernard Aboba" Cc: , "Adrangi, Farid" X-OriginalArrivalTime: 07 Jun 2004 21:49:05.0239 (UTC) FILETIME=[40D2D670:01C44CD9] X-Scanned-By: MIMEDefang 2.31 (www . roaringpenguin . com / mimedefang) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Mon, 7 Jun 2004 14:49:04 -0700 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: quoted-printable Hi Bernard, Please see my response inline. BR, Farid >=20 > BTW, I think the draft needs a very short IANA Considerations=20 > section that > says "There are no considerations for IANA." >=20 Ok. > > I see your point. Most of AAA behavior discussion is done=20 > in describing > > the option 3 -- therefore it is going to be hard to describe how the > > option 3 would work without making any references to AAA. =20 > I will try to > > reword the text in option 3, and send it to you for review. >=20 > I'm not sure you even need to describe the options in much=20 > detail. You > can just have an "Implementation Considerations" section that=20 > lists the > three options and says a few words about the pros/cons. But making > recommendations is probably going too far. Ok, I will restructure/reword this -- I like the idea of having an "Implementation Considerations" section. >=20 > > Does IEEE describe how a peer can guard against spoofed SSIDs? >=20 > IEEE 802.11i does provide this information actually -- by checking the > parameters in the Beacon/Probe Response against those included in the > 4-way handshake. But I'm not clear how to protect against=20 > bogus network > information on the client. For example, what should the client do if: >=20 > a. An initial EAP-Request/Identity did not include a hint, but after > sending an EAP-Response/Identity, the peer receives *both* an > EAP-Request/Identity with a hint, *and* an EAP-Request for a method? >=20 > b. An EAP-Request/Identity contains hints for unknown NAIs >=20 > > we could include some discussion on potential attacks and=20 > possibly how a > > peer can guard against them if you think it is necessary=20 > even though we > > are saying the information should be used as a hint. >=20 I think our focus here is (b) and I would reword it like "An EAP-Request/Identity contains hints for mediating network names". I don't think the (a) is an option as the home network will not know about the access network's roaming agreements with 1 or more mediating network. Let's talk about what bogus network information means here. I can think of two scenarios: 1) client associates with a bogus SSID, starts EAP, and receives some bogus network information. In this case, associating with the bogus SSID is the problem - what ever happens after that obviously is going to be questionable. 2) Associating with a valid/legitimate SSID. In this case, the access network may advertise only a subset of the mediating networks (based on its own preference), or route the AAA packets different from what specified through the user's preference (i.e., via decorated NAI). I don't think we can detect the former one. However, for the latter one, the home network may be able to detect the problem in real time if it knows the path that the AAA packet took, or during the settlement time. =20 We may want to list some known attack scenarios in the draft and leave out how these attacks can be detected. What do you think? =20 =20 > I guess I'm unclear what "hint" means here -- under what=20 > conditions should > conforming implementations ignore the "hint" -- and how are=20 > the "hints" > used in addition to the information specified in RFC 3770? >=20 >=20 Hint here means that network information is delivered through an unprotected channel, the initial EAP-Identity Request. =20 _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From chrysanthemumo@cashette.com Tue Jun 8 00:48:08 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA17421 for ; Tue, 8 Jun 2004 00:48:08 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BXYWv-0002Bt-Fj for eap-archive@ietf.org; Tue, 08 Jun 2004 00:48:09 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BXYVv-0001Xz-00 for eap-archive@ietf.org; Tue, 08 Jun 2004 00:47:08 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BXYUg-0000mQ-00; Tue, 08 Jun 2004 00:45:50 -0400 Received: from [211.210.82.40] (helo=65.246.255.50) by mx2.foretec.com with smtp (Exim 4.24) id 1BXYUg-0004Gj-2L; Tue, 08 Jun 2004 00:45:50 -0400 X-Message-Info: OSWVaHR39sW1ZjgV6ApuqL6R0X1p70YZ Received: from hobby.albumin.com ([205.122.32.180]) by ve26-c10.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Tue, 08 Jun 2004 10:53:04 +0400 Received: from ljy4-laban2.B9syq.com (needham2 [50.5.104.162]) by trapezium.z4.com (6.78.3/9.78.0) with ESMTP id o2OR6rq98796 for ; Tue, 08 Jun 2004 07:49:04 +0100 GMT Received: (from y3forte@localhost) by ybg0-descriptive4.l4nir.com (0.45.5/6.80.4) id j1DO5rf58604; Tue, 08 Jun 2004 10:56:04 +0400 GMT X-Authentication-Warning: hgr5-arthritis6.k2zsk.com: v2cottony set sender to chrysanthemumo@cashette.com using -f MIME-Version: 1.0 Date: Tue, 08 Jun 2004 11:56:04 +0500 From: Keisha Hughes Subject: Newsletter #0491 To: cfrg@ietf.org Message-Id: Content-Type: multipart/alternative; boundary="--9004219453790209" X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=6.3 required=5.0 tests=FORGED_RCVD_NET_HELO, HTML_20_30,HTML_FONTCOLOR_BLUE,HTML_FONTCOLOR_RED,HTML_FONT_BIG, HTML_MESSAGE,LINES_OF_YELLING,MIME_HTML_NO_CHARSET,MIME_HTML_ONLY, MIME_HTML_ONLY_MULTI,RCVD_NUMERIC_HELO,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 X-Spam-Report: * 0.3 RCVD_NUMERIC_HELO Received: contains a numeric HELO * 0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.1 HTML_FONT_BIG BODY: HTML has a big font * 0.5 HTML_20_30 BODY: Message is 20% to 30% HTML * 0.0 LINES_OF_YELLING BODY: A WHOLE LINE OF YELLING DETECTED * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.1 HTML_FONTCOLOR_RED BODY: HTML font color is red * 0.7 MIME_HTML_NO_CHARSET RAW: Message text in HTML without charset * 0.2 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * 3.0 FORGED_RCVD_NET_HELO Host HELO'd using the wrong IP network * 1.1 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts ----9004219453790209 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable ****EESI****EESI****EESI****EESI****EESI****EE= SI****EESI***

URGENT TRADING ALERT - EESI - STOCK MARKET NEWS FLASH

Significant short term trading profits in a hot Internet issue (Ticker= : EESI)

EESI is one of the most overlooked and undervalued stocks that we have see= n lately, and is poised to see major price gains over the next week. = EESI will see much higher trading levels over the next few days and offer= s savvy investors the chance to make huge short term trading gains. = Don=92t miss out on this unique opportunity=85June 7=96 June 11=85

SPECIAL ALERT
Emerging Enterprise Solutions, Inc. (OTC Pink Sheets: EESI)
Current Price: $0.08
Shares Outstanding: 49 Million
Est. Public Float: 12.0 Million
Market Capitalization: $1.96 Million
Short Term Target: $0.30
12month Target:   $1.00

Take a look at our some of our most recent Strong Buy recommendations...
=95 November          CFTN at= 0.40        High 2.62...655= % Gain!
=95 November          GDVI at= 0.04        High 0.29...625= % Gain!
=95 December          HTSC at= 0.70       High 2.95...329% Gain!
=95 APRIL/March     DMTY at 0.30   &nbs= p;   High 0.90...300%Gain!
=95 APRIL           = ;      NALG at 0.76     = High 1.60...110%Gain! in two days
=95 APRIL           = ;      IPYS at 0.38     = High 1.10...189%Gain! in two days
=95 APRIL GXRI at 1.21        High 1.= 95=8562%Gain! in three days

--EESI is a rapidly emerging direct sales company with two main divisions-= Bayport, Inc. offers a complete line of high-quality products for the hig= h growth $52 billion personal care industry- American Business Resource Ne= twork provides a complete system of educational training and instructional= seminars to help the nation=92s 25 million small and entrepreneurial busi= nesses.

--EESI is undertaking major growth initiatives which will play out in sign= ificant near term revenue growth, and leave the Company well positioned to= emerge as a major player in the $85 billion direct marketing industry!!!<= BR>
A Few Reasons to Own EESI:

1. EESI=92s Bayport subsidiary is an emerging leader in the $52 billion pe= rsonal care market with a product offering of over 70 high quality persona= l care and health and wellness items. The Bayport line is distribute= d through direct sales, the Internet, infomercials, and trade shows. = Bayport is completing installation of advanced order processing and fulfi= llment software that will enable it to meet high sales volumes, and is dev= eloping relationships with outside sales groups to ramp sales efforts.&nbs= p;

2. Bayport is addressing lucrative markets with its personal care an= d health & wellness offerings. Personal care and cosmetic care i= s a $52.7 billion industry that is growing at a CAGR of 5.7%, while Baypor= t=92s niche markets provide ample growth opportunities (skin care is a $19= billion industry, for example). The health & wellness industry = is estimated at over $59 billion and has been growing at a rate of 10= % annually, as American consumers seek better health and appearance.

3. EESI has created an innovative and unique service offering with America= n Business Resource Network. ABRN will provide three complimentary l= evels of services, a =93a =93Getting Your Business Started on the Right Tr= ack=94 software package which includes all of the forms and templates nece= ssary to form a business; a more advanced series of educational seminars c= overing topics relevant to start-up business needs; and the National Inves= tment Congress- an organization hosting annual conventions to showcase com= panies for national investment exposure and financing.

4. There are over 25 million individual and small businesses in the US, wi= th over 1 million small business failures each year and a majority of new = start-ups closing within 5 years due to owner inexperience, lack of famili= arity with capital structure, and other issues. ABRN is one of the f= irst businesses to specifically address this significant market opportunit= y.

5. Direct marketing is a dynamic and explosive growth industry with revenu= es of over $85 billion- in the US alone the industry is expected to reach = $35 billion by 2005. Increasingly network marketing has become popul= ar not just among specialty businesses like Avon and Mary Kay, but with co= rporate America as well.

6. EESI has recently launched Telemarkone, a call center and telemarketing= operation that will provide support for Bayport and ABRN operations as we= ll as an additional revenue stream through contracts with major corporatio= ns. Telemarkone has already signed agreements with AT&T Wireless= and California Long Distance Co. and EESI management estimates that this = arm of the Company will add at least $2 million in net income over the nex= t 12 months.

7. EESI has a strong and experienced management team with long and success= ful histories in key operating markets. CEO Gary Sherman has an exte= nsive investment banking background, while Bayport leaders James and Betty= Porter have a wide range of experience in the direct marketing and person= al care industries.

With a strong position in the direct marketing industry, innovative operat= ions in personal care/health & wellness, business education, and telem= arketing, EESI stands poised to see major near term revenue growth. = EESI is improving its sales infrastructure, and we expect to see significa= nt announcements over the next several months.

About EESI -- go to bayportinc.com and abrninc.com

We urge you to invest now, and take advantage of this unique opportunity t= o invest in a rapidly growing and soon-to-be profitable new player in the = direct marketing industry. The best news is that, at its current pri= ce of $0.04, EESI offers a low risk opportunity to see huge trading gains.= This stock could reach $0.30 in the next week of trading!!!

This profile is not without bias, and is a paid release. Writers and m= ailers have been compensated for the dissemination of company information = on behalf of one or more of the companies mentioned in this release. Parti= es involved in the creation and distribution of this profile have been com= pensated 50,000 dollars by a third party (third party), who is non-affilia= ted, for services provided including dissemination of company information = in this release. PR and other individuals and other creators and mailers o= f this letter will sell all of its original shares during the distribution= of this profile. Parties involved will immediately sell some or any share= s in a profiled company held by profile creators and may have previously s= old shares in a profiled company held by PR Individuals involved. Our Opti= n mailing services for a company may cause the company stock price to incr= ease, in which event involved parties would make a profit when it sells it= s stock in the company. In addition, our selling of a company stock may ha= ve a negative effect on the market price of the stock. The past profiles a= re only the winners not all of our recommendations

----9004219453790209-- From eap-admin@frascone.com Tue Jun 8 06:32:17 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA16931 for ; Tue, 8 Jun 2004 06:32:16 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 96F4F202DF; Tue, 8 Jun 2004 06:19:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 6F7BE203B1; Tue, 8 Jun 2004 06:19:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id AF15B203B1 for ; Tue, 8 Jun 2004 06:18:04 -0400 (EDT) Received: from p-mail2.rd.francetelecom.com (p-mail2.rd.francetelecom.com [195.101.245.16]) by mail.frascone.com (Postfix) with ESMTP id B2B4C202DF for ; Tue, 8 Jun 2004 06:18:02 -0400 (EDT) Received: from parmhs4.rd.francetelecom.fr ([10.193.117.63]) by parsmtp2.rd.francetelecom.com with Microsoft SMTPSVC(6.0.3790.0); Tue, 8 Jun 2004 12:31:04 +0200 Received: from rd.francetelecom.fr ([10.193.106.32]) by parmhs4.rd.francetelecom.fr with Microsoft SMTPSVC(5.0.2195.6747); Tue, 8 Jun 2004 12:31:02 +0200 Message-ID: <40C59627.2080907@rd.francetelecom.fr> From: Florent Bersani User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Henrik Levkowetz , jari.arkko@piuha.net, Bernard Aboba Cc: eap@frascone.com Subject: Re: [eap] Issue 245: EAP Restart Issue References: <40C34D08.6000201@piuha.net> <20040607002602.38bd8868@chardonnay> In-Reply-To: <20040607002602.38bd8868@chardonnay> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 08 Jun 2004 10:31:02.0817 (UTC) FILETIME=[B29FA110:01C44D43] X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Tue, 08 Jun 2004 12:34:15 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Well, I've got a fuzzy feeling about this issue, especially when I take a look at rfc3748.b.txt in section 7.12: "In IEEE 802.11, a "link down" indication is an unreliable indication of link failure, since wireless signal strength can come and go and may be influenced by radio frequency interference generated by an attacker. To avoid unnecessary resets, it is advisable to damp these indications, rather than passing them directly to the EAP. Since EAP supports retransmission, it is robust against transient connectivity losses. " Perhaps it's my unskilled understanding of the problem, but I find "indication of link failure" and "lower layer failure indication" quite confusing :-( * If they refer to the same thing, then I find the proposed changed to resolve issue 245 contradictory to the RFC 3748 text quoted here above * If not, I'd be more than happy to get some clarification :-) Any suggestion? Florent P.S: My two cents here is that there might be a confusion arising from "lower layer". Indeed, I guess when EAP is used for wireless LANs, lower layer could apply to two layers: the IEEE 802.11 layer and the IEEE 802.1X/11i layer. Stricto sensu, I think that in this case, lower layer should only refer to 802.1X. If this is the case, then the problem I am trying to consider reduces to know when 802.1X considers that it should restart due to its lower layer (i.e. 802.11) link failure. Depending on this decision, the RFC 3748 text quoted here above might become useless (i.e. since 802.1X could be damping the link failure indications, there would be no need to mandate that EAP do so - but I believe without any justification that this is not the case for 802.1X). I leave the debate on 802.1X/EAP to the group of well versed people in that matter (which I unfortunately do not -yet? - belong to :-() However, the problem with this P.S is that it is too 802.1X centric (as much of EAP probably but this is another debate). There could be some cases in which EAP is run directly over a link layer and has no intermediate layer (like 802.1X) to do the possible damping. If this is the case, we really want to make sure that the "damping" mechanism used by EAP is really media independent and works as well with 802.1X as without. If 802.1X does no damping (which is probably the case), then this problem is easy. If it does, well? Not sure I have been very clear here :-( Hope however this helps. Henrik Levkowetz wrote: >I have included this change in the Auth. 48 corrected rfc3748 text - see >'rfc3748.b.txt' on http://ietf.levkowetz.com/drafts/eap/rfc2248bis/ > > Henrik > >Sunday 6 June 2004, Jari Arkko wrote: > > >>I think the suggested change is OK. >> >>--Jari >> >>Bernard Aboba wrote: >> >> >>>In going over the discussion on Issue 241, John Vollbrecht made a >>>suggestion for a change to RFC 3748 that I think corrects an oversight. As >>>the document is now Author 48 hours, it is still possible to correct the >>>problem if the WG approves. >>> >>>-------------------------------------------------------------------------- >>>Issue 245: EAP Restart Issue >>>Submitter name: John Vollbrecht >>>Submitter email address: jrv@umich.edu >>>Date first submitted: 5/7/2004 >>>Reference: http://mail.frascone.com/pipermail/eap/2004-May/002460.html >>>Document: RFC2284bis-09 >>>Comment type: T >>>Priority: S >>>Section: 4.1 >>>Rationale/Explanation of issue: >>> >>>Section 4.1 of RFC 3748 states: >>> >>>"Additional Request packets MUST be sent until a valid Response packet is >>>received, or an optional retry counter expires." >>> >>>Where the lower layer terminates the initial session and causes a restart, >>>if EAP knows that the lower layer is terminated then I am not sure why it >>>would continue to resend. >>> >>>Perhaps we should change this to: >>> >>>"Additional Request packets MUST be sent until a valid Response packet is >>>received, an optional retry counter expires, or a lower layer failure >>>indication is received." >>> >>> >>_______________________________________________ >>eap mailing list >>eap@frascone.com >>http://mail.frascone.com/mailman/listinfo/eap >> >> > > >_______________________________________________ >eap mailing list >eap@frascone.com >http://mail.frascone.com/mailman/listinfo/eap > > > _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Tue Jun 8 06:57:17 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA17888 for ; Tue, 8 Jun 2004 06:57:17 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 0043320DDC; Tue, 8 Jun 2004 06:44:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id B0ED5205F5; Tue, 8 Jun 2004 06:44:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 3A66D205F5 for ; Tue, 8 Jun 2004 06:43:33 -0400 (EDT) Received: from p-mail1.rd.francetelecom.com (p-mail1.rd.francetelecom.com [195.101.245.15]) by mail.frascone.com (Postfix) with ESMTP id 47AE3203B1 for ; Tue, 8 Jun 2004 06:43:31 -0400 (EDT) Received: from parmhs4.rd.francetelecom.fr ([10.193.117.63]) by parsmtp2.rd.francetelecom.com with Microsoft SMTPSVC(6.0.3790.0); Tue, 8 Jun 2004 12:56:39 +0200 Received: from rd.francetelecom.fr ([10.193.106.32]) by parmhs4.rd.francetelecom.fr with Microsoft SMTPSVC(5.0.2195.6747); Tue, 8 Jun 2004 12:56:38 +0200 Message-ID: <40C59C27.6070209@rd.francetelecom.fr> From: Florent Bersani User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 X-Accept-Language: en-us, en MIME-Version: 1.0 To: eap@frascone.com Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 08 Jun 2004 10:56:38.0988 (UTC) FILETIME=[4640B8C0:01C44D47] X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Another two minor and finicky IANA considerations questions for RFC3748 Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Tue, 08 Jun 2004 12:59:51 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi all, While reviewing again RFC 3748b, I just came across two little (and fairly uninteresting I admit) questions/remarks (that may however help RFC 3748 understanding in the future: 1) It is apparently not specified how expanded (method) types for vendor-ID 0 (IETF) can be allocated (e.g. Designated Expert, with Specification Required or standards action, FCFS, ...). In section 6.2 we indeed only read: "Method Type values 256-4294967295 may be allocated after Type values 1-191 have been allocated." I know we've probably got time before this happens but I just feel reluctant to leave an incomplete spec behind us ;-) 2) The (non)-use of 0 as packet code or method type The newbie I am is pretty sure that there are good reasons why EAP did not start its code and type space at 0 (and I'd be more than thankful to anybody who could tell me why) but I find the current wording about not using this value a (very little) bit confusing. In section 6.1 of RFC 3748b we read: "Packet Codes have a range from 1 to 255" and on the IANA website (http://www.iana.org/assignments/eap-numbers) we find: "(last updated 12 April 2004) Packet Codes: Value Description Reference 1 Request [RFC-ietf-eap-rfc2284bis-09.txt] 2 Response [RFC-ietf-eap-rfc2284bis-09.txt] 3 Success [RFC-ietf-eap-rfc2284bis-09.txt] 4 Failure [RFC-ietf-eap-rfc2284bis-09.txt] 5-255 Unallocated" In section 6.2 of RFC 3748b we read: "The original EAP method Type space has a range from 1 to 255" and on the IANA website (http://www.iana.org/assignments/eap-numbers) we find: "(last updated 12 April 2004) ... Value Description Reference 0 RESERVED 1 Identity [RFC-ietf-eap-rfc2284bis-09.txt] ..." Indeed, the value 0 is used in the NAK response. My suggestion would be to find a way to simply reflect this usage in RFC 3748 and for IANA. My preference would be adding a small reminder on the value 0 usage in RFC 3748 section 6.2 and updating the IANA website to also refer to RFC 3748 for this value. I am ready to propose some text if people feel like making this minor and unimportant change. BR, Florent P.S: BTW, it seems like we (EAP and/or IANA) have not captured the point I raised earlier on Method Type 7&8 (http://mail.frascone.com/pipermail/public/eap/2004-May/002486.html). Again, I am ready to propose some text if people feel like making this minor and unimportant change (and I concurred to Jari's proposal "allocated but unused"). _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Wed Jun 9 05:24:19 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA04579 for ; Wed, 9 Jun 2004 05:24:18 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 194C620316; Wed, 9 Jun 2004 05:11:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 624082036E; Wed, 9 Jun 2004 05:11:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 16E562036E for ; Wed, 9 Jun 2004 05:10:40 -0400 (EDT) Received: from p-mail1.rd.francetelecom.com (p-mail1.rd.francetelecom.com [195.101.245.15]) by mail.frascone.com (Postfix) with ESMTP id DE96D20316 for ; Wed, 9 Jun 2004 05:10:37 -0400 (EDT) Received: from parmhs4.rd.francetelecom.fr ([10.193.117.63]) by parsmtp2.rd.francetelecom.com with Microsoft SMTPSVC(6.0.3790.0); Wed, 9 Jun 2004 11:23:42 +0200 Received: from rd.francetelecom.fr ([10.193.106.54]) by parmhs4.rd.francetelecom.fr with Microsoft SMTPSVC(5.0.2195.6747); Wed, 9 Jun 2004 11:23:40 +0200 Message-ID: <40C6D7DF.7050203@rd.francetelecom.fr> From: Florent Bersani User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "eap@frascone.com" Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 09 Jun 2004 09:23:40.0837 (UTC) FILETIME=[73D42D50:01C44E03] X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Comments on EAP state machine v4 Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 09 Jun 2004 11:26:55 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi all, Below are some comments that came to my mind while reading the latest version of EAP state machine I am aware of (http://www.cs.umd.edu/~npetroni/EAP/drafts/ietf-eap-statemachine/04/draft-ietf-eap-statemachine-strawman-04.pdf). I know that these comments may: * Come much too late (since IETF last call has ended 2004-05-13 so it shouldn't be the time IINM to propose any "real" changes to this document) * Be completely naive or off the rocket * Echo some comments that have already been made (although I tried my best to reread - and understand ;-) - the EAP state machine issues tracked by Bernard I just felt like making them: * Because the probability that they be of some help somehow is - I hope - non-zero * Because the probability that someone kindly replies to educate me, is - I hope - non-zero * For the record So here they go. Comment #1 - Editorial In section 3.2 state machine symbols, we can read: "+ Arithmetic addition operator. - Arithmetic subtraction operator." I find these definitions useless (IINM we never see the notation + in the state machines and the notation ++ which is perhaps why this was included should either be defined directly or assumed understandable as it is said in section 3.1 "The interpretation of the special symbols and operators used in the state diagrams is as defined in Section 3.2; these symbols and operators are derived from the notation of the C++ programming language, ISO/IEC 14882.") BTW, I cannot find any use of - or -- in the document. And anyway, I think that in case + and - are however necessary for the comprehension of the document, it should be stated on which space they operate (N, Z/2**16Z, Z/2**32Z...) Comment #2 - Editorial This is about portEnabled and eapRestart. This discussion for what regards portEnabled is a follow-up on issues 198 and 203. I do still find the name of this variable too .1X centric and, in the light of the recent debates on corner cases on EAP starts and restarts, I'd prefer a more explicit name (like Yoshi had proposed for instance). Also I'd like the current definition (e.g. in section 4.1.1 "portEnabled (boolean) Indicates that the EAP peer state machine should be ready for communication. This is set to TRUE when the EAP conversation is started by the lower layer. If at any point the communication port or session is not available, portEnabled is set to FALSE and the state machine transitions to DISABLED.") clarified (and why not - two - example instantiations given, one .1x and one IKEv2 for instance) to take the "new"? problems into account (e.g. section 7.12 of RFC 3748b "In IEEE 802.11, a "link down" indication is an unreliable indication of link failure, since wireless signal strength can come and go and may be influenced by radio frequency interference generated by an attacker. To avoid unnecessary resets, it is advisable to damp these indications, rather than passing them directly to the EAP. Since EAP supports retransmission, it is robust against transient connectivity losses. " ) For eapRestart, my problem is much the same, two concrete examples (.1X, PPP or IKEv2 for instance) would considerably help understand what this variable stands for. Comment #3 - Editorial This is about the initialization of lastID which is not done in the EAP peer state machine. This had been pointed out in issue 229 but apparently not taken into account. Also specify, e.g. in section 4.3.1 that lastId may take the value "NONE" Comment #4 - Editorial This is about idleWhile. From my understanding, this timer steadily decreases and when it reaches 0, the peer may time out. Clearly, knowing the initial value of this timer, by a simple subtraction, one can get to know how long the peer has been waiting. So, contrary to the definition in section 4.1.1 ("idleWhile (integer) Outside timer used to indicate how long the peer has waited for a new (valid) request."), I'd rather say that this timer indicates how long remains before the peer may time out. Comment #5 - Technical That's just a triviality about for instance the peer state machine: thanks to EAP idleWhile, the method does not have to set timers (EAP cares for it). However, in case the method wants to implement a "bad packet received" counter (e.g. it is waiting for a packet and to provide DoS resilience it wants to allow receiving a limited number of "bad packets" before the right one - instead of going automatically to failure), it has to do so by itself (and typically will use altReject if it wants to fail before the timeout. This is not an issue but perhaps it could be worth discussing the usefulness of such a behavior for EAP methods (see e..G g. RFC 3748 section 7.5 "Whether a MIC validation failure is considered a fatal error or not is determined by the EAP method specification") and that it can indeed be implemented in the EAP state machines (with a little disymmetry between the timer implemented within EAP and the "bad packet received" counter implemented within the method. I guess this comment is a way for me to express that I wholeheartedly agree with the point .3 Joe made in issue 203 (in other words the imbrication of EAP and EAP methods confine to layer violation). Comment #6 - Technical This is about DONE, CONT and MAY_CONT/UNCOND_SUCC, COND_SUCC and FAIL. While I do not doubt that there are could technical reasons to use these variables (rather than simply CONT and DONE) and that the EAP state machine does not claim to be THE way to implement EAP (in its introduction "The State Machine and associated model are informative only. Implementations may achieve the same results using different methods"), I think that giving briefly the rationales behind this choice (which is not explicit in section 4.2 IMHO) would help the reader. In particular, giving an example of MAY_CONT's usefulness. About the decision variable, here also an explanation of the design (maybe with an example) could help. Indeed, it seems to me that not all pairs (state, decision) are acceptable so state/decision are not totally independent. Here again, giving an example why COND_SUCC was introduced could help. I think this concern is also related to the conditions in the state machine that allow the peer to transition to success or failure. They do not appear to be either trivial or symmetric. The newbie I unfortunately am, needs much more time to (fully) understand them than any other transition condition in the state machine. Bernard for instance questioned about these Success/Failure transitions in Issue 229. For instance, I am wondering, how the condition "altAccept && methodState != CONT && decision == FAIL" may occur. Also in section 4.2 I tend to feel dizzy with some text in the paragraph methodState=DONE: "If both (a) the server has informed us that it will allow access and the next packet will be EAP Success,and (b) we're willing to use this access, set decision=UNCOND SUCC." I guess that condition (a) should rather be formulated in terms of altAccept, shouldn't it? Indeed while IIRC RFC 3748 mandates (in section 4.2 "The authenticator MUST transmit an EAP packet with the Code field set to 3 (Success)" that a success packet be sent, this does not guarantee that the peer will ever receive it. Comment #7 - Editorial I do not find any definition of m.buildResp (that is used in Figure 3 EAP peer state machine) in section 4.4 Peer state machine procedures). Moreover, i would find it clearer if m.buildresp somehow indicated that it does not only depend on ReqId but also on some internal method state that has been calculated by m.process. Comment #8 - Editorial Although in section 4.4, it is said parseEapReq() "checks that the lengthfield is not longer than the received packet", I do not find it completely straightforward from Figure 3 what the peer does in case there is a parse error due to the length (or an invalid code type or...). Comment #9 - Technical Apparently Figure 4 (EAP Standalone Authenticator State Machine) leaves the door open to a sequence of EAP authentication methods (which is explicitly forbidden by RFC 3748 section 2.1 "However, the peer and authenticator MUST utilize only one authentication method (Type 4 or greater) within an EAP conversation"). This behavior may be prevented thanks to Policy.getDecision or PolicygetNextMethod... but I do not find this is exactly a matter of policy and at least, this should be pointed out (that the policy MUST forbid this behavior). Comment #10 - Technical Why include a separate TIMEOUT_FAILURE State? Why not use the FAILURE state? Comment #11 - Editorial eapTimeout does not seem to be defined in the text. Comment #12 - Technical This one is stupid but what happens, according to Figure 4, when the standalone authenticator fails directly, i.e. starts by INITIALIZE, transitions to SELECT_ACTION where Policy.getDecision replies FAILURE and thus transitions to FAILURE - in the FAILURE state, I bet there is some problem with eapReqData = buildFailure(currentId) since currentId=NONE Comment #13 - Editorial Why call section 5 "standalone authenticator"? I bet this is the old story of the glass half full or half empty, because I'd rather have standalone EAP server. Comment #14 - Technical I am totally novice to DoS (I found a lot of papers on the subject, for instance related to IKE - I plan to read them soon :-)) so this point is probably not very important (my understanding is that one of the difficulties with DoS is to understand what is really relevant and what rather belongs to the .11 microwave oven attack, another one could be set the trade off between DoS resilience and "efficiency"). It just seems to me that Figure 4 prevents the standalone authenticator from ignoring (bogus) NAKs. Indeed, let us consider a corporate WLAN deployment where exactly one EAP method is allowed - so that no valid user will ever NAK. In this setting, there is no point in processing the NAK, possibly loosing the valid user's response if the attacker's NAK arrived first and starting all over. I did not find text on this in RFC 3748 (the text I found was about preventing NAKs when a response to a method has already been received) which is not our case here. Comment #15 - Editorial The title of Section 6 is "EAP Backend Authenticator" which I find quite strange. I'd rather suggest "backend authentication server". Comment #16 - Editorial In section 6.2 we find: "The only difference is that some methods on the backend may support "picking up" a conversation started by the pass-through. That is, the EAP Request packet was sent by the pass-through, but the backend must process the corresponding EAP Response. Usually only the Identity method supports this, but others are possible" Would it be possible to explain whether this possibility is explicitly left open by some document (in this case, which one) or is implicitly allowed (and in this case, whether there are yet settings/implementations which use such a possibility). Comment #17 - Technical I fail to understand the transition in Figure 7 from INITIALIZE_PASSTHROUGH to AAA_IDLE when currentId==None, given that AAA_IDLE sets aaaEapResp=TRUE Comment #18 - Editorial If the purpose of aaaIdentity is to allow encapsulation of the peer's identity in e.g. RADIUS User-Name attribute, I'd rather have aaaIdentity be directly the identity of the peer than a whole EAP packet Comment #19 - General Just a late and useless remark, I tend to dislike EAP being too much 802.1X centric: EAP is (or at least should be) media independent. Therefore, the problems implied by splitting the server side into an authenticator and an authentication server do probably not belong (originally) to EAP. Thus, for the sake of clarity, I would rather have had two separate documents: one for the EAP state machine (peer and standalone server) and for the EAP state machines in case the server side is split (the split case is however also evoked in RFC 3748 - which I would also have avoided)... Florent, at least you know the reactions of naive reader while reading the EAP state machine ;-) _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From FZOBFX@inter.net.co Wed Jun 9 08:19:26 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA11290 for ; Wed, 9 Jun 2004 08:19:26 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BY23D-00066I-C2 for eap-archive@ietf.org; Wed, 09 Jun 2004 08:19:27 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BY22F-0005GJ-00 for eap-archive@ietf.org; Wed, 09 Jun 2004 08:18:28 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BY20r-0003bB-00; Wed, 09 Jun 2004 08:17:01 -0400 Received: from cae168-192-090.sc.rr.com ([24.168.192.90]) by mx2.foretec.com with smtp (Exim 4.24) id 1BY20q-0003I3-BO; Wed, 09 Jun 2004 08:17:01 -0400 X-Message-Info: 0O944JSUhq96ETDFAcacRIGepaYO389ivuFEDmqiGyCJN13O4 Received: (from prowess@24.168.192.90) by corrupt2.156.14.102.136 (C.DF.3/D.90.9) id pa0A4AmF455F; Wed, 09 Jun 2004 17:14:41 +0400 Message-ID: Reply-To: "Carla Ott" From: "Carla Ott" To: "Edu-team-web-archive" Subject: bloodpressure,cancer,flu,health,American doctors directoty Date: Wed, 09 Jun 2004 12:07:41 -0100 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--E0E5BF3EEDF8839AADB9" X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=1.1 required=5.0 tests=AWL,HTML_MESSAGE, HTML_TITLE_UNTITLED,LINES_OF_YELLING,LINES_OF_YELLING_2,ORDER_NOW autolearn=no version=2.60 ----E0E5BF3EEDF8839AADB9 Content-Type: text/plain; charset="iso-B202-7" Content-Transfer-Encoding: quoted-printable Untitled Document EXCLUSIVELY ON CD-ROM.

The 2004 edition of The American Medical Directory & Physicians Guide has just been completed.

physicians, specialists, doctors, licensed doctors,
board physicians, emergency physicians, 2004 physicians guide,
2004 physicians directory, physicians contact.

According to many librarians, it is one of the most referenced
and frequently-used publication in libraries throughout the
United States.

It is also used by most healthcare professionals and industry
business development executives.

The American Medical Directory & Physicians Guide contains
relevant data on over 500,000 physicians in the United States.

Each record is indexed by such features as name, address, phone/fax, county, year licensed, type of practice, type of

physician, as well as primary and secondary specialty.

During this introductory offer, the cost of the new directory
(which is available exclusively on CD-Rom) is $425.00 (reg. $795).

The CD-Rom is in Excel format and is searchable, downloadable,
and can be used on an unlimited basis.

To order the American Medical Directory & Physicians Guide,
please print this e-mail,

complete the information below and fax it to 905-751-0199.
(tel: 905-751-0919).

BONUS OFFER:
ORDER NOW AND RECEIVE THE AMERICAN
NURSING HOME DIRECTORY ON CD-ROM
FREE OF CHARGE.

NAME:

TITLE:

ORGANIZATION:

ADDRESS:

CITY:

POSTAL:

TEL:

FAX:

E-MAIL:

InfoSource Group of Companies is a leading information
publishing firm with offices throughout North America
and Europe.

----E0E5BF3EEDF8839AADB9-- From eap-admin@frascone.com Wed Jun 9 14:10:20 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id OAA05946 for ; Wed, 9 Jun 2004 14:10:19 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 5CD3620ED0; Wed, 9 Jun 2004 13:57:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 24BCE20ECB; Wed, 9 Jun 2004 13:57:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 080D220ECB for ; Wed, 9 Jun 2004 13:56:40 -0400 (EDT) Received: from internaut.com (h-66-167-171-107.sttnwaho.covad.net [66.167.171.107]) by mail.frascone.com (Postfix) with ESMTP id 0AFAB20EC1 for ; Wed, 9 Jun 2004 13:56:38 -0400 (EDT) Received: from localhost (aboba@localhost) by internaut.com (8.10.2/8.10.2) with ESMTP id i59IB2A06816 for ; Wed, 9 Jun 2004 11:11:02 -0700 From: Bernard Aboba To: eap@frascone.com Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] EAP SM Issues Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Wed, 9 Jun 2004 11:11:02 -0700 (PDT) X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) I've filed Florent's EAP SM review as three separate issues: 247 (Editorial issues), 248 (Technical) and 249 (General). The document has passed EAP WG last call, IETF last call, and IESG review, and is therefore no longer under EAP WG change control, so all changes must be approved by the IESG at this point. _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From firemaniy@catchamail.com Wed Jun 9 22:41:29 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA13027 for ; Wed, 9 Jun 2004 22:41:29 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BYFVS-00021j-0R for eap-archive@ietf.org; Wed, 09 Jun 2004 22:41:30 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BYFU9-00015J-00 for eap-archive@ietf.org; Wed, 09 Jun 2004 22:40:11 -0400 Received: from [221.198.141.245] (helo=L3U8Y2) by ietf-mx with smtp (Exim 4.12) id 1BYFSg-00079j-00; Wed, 09 Jun 2004 22:38:39 -0400 X-Message-Info: NWBGcOU21jWBw/yUsUXnnLzEwHtiNo2L Received: from come-b38.close.aol.com ([26.64.147.247]) by jm1-l13.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Thu, 10 Jun 2004 06:38:19 +0300 From: Trinidad Gamble To: cfrg@ietf.org Subject: Newsletter #1387 Date: Wed, 09 Jun 2004 22:29:19 -0500 EST Message-ID: <37063627390725.92166.88469543@pastor-w80.aol.com> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="--02396606481091721437" X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=5.6 required=5.0 tests=FRONTPAGE,HTML_30_40, HTML_FONTCOLOR_BLUE,HTML_FONTCOLOR_GREEN,HTML_FONTCOLOR_RED, HTML_FONTCOLOR_UNSAFE,HTML_FONT_BIG,HTML_MESSAGE,LINES_OF_YELLING, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,STOCK_PICK,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 X-Spam-Report: * 1.2 STOCK_PICK BODY: Offers a picked stock * 0.8 HTML_30_40 BODY: Message is 30% to 40% HTML * 0.1 HTML_FONTCOLOR_GREEN BODY: HTML font color is green * 0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.1 HTML_FONT_BIG BODY: HTML has a big font * 0.1 HTML_FONTCOLOR_UNSAFE BODY: HTML font color not in safe 6x6x6 palette * 0.0 LINES_OF_YELLING BODY: A WHOLE LINE OF YELLING DETECTED * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.1 HTML_FONTCOLOR_RED BODY: HTML font color is red * 1.6 FRONTPAGE BODY: Frontpage used to create the message * 0.2 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * 1.1 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts ----02396606481091721437 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable New Page 4

****DCPI****DCPI****DCPI****DCPI****DCPI****DCPI****DCPI***DCPI****= DCPI***

New York Times Financial Digest
Investor Alert on New Hot Issue

Take a look at our some of our most recent Strong Buy recommendations...

November GDVI at 0.04 High 0.29...625% Gain!
December HTSC at 0.70 High 2.95...329% Gain!
March/April DMTY at 0.30 High 0.90...300%Gain!
April IPYS at 0.38 High 1.10...189%Gain in two days !
May/June EESI at 0.0= 3 High 0.95..= 317% Gain in three days !
June = DCPI at 1.25 Don't Miss Out! 300% Gains Expected.....

(OTC-BB: DCPI) DCPI has developed a revolutionary digital printing technology recognized = to be the solution to variable graphical/color printing processes by industry le= aders such as IBM (NYSE: IBM); XEROX (NYSE: XRX) and Siemens(NYSE: SI) whose = products only print in black via laser products. DCPI's commerci= al printing application hardware/software and printing consumable products are expecte= d to dominate the printing "enhancement" market ($5 Billion plus++ in= 2002) over the next several years. DCPI's initial target market of more than 4,000 = large scale commercial printing companies of the total of 46,000 establishments is exp= ected to drive revenue growth to the tens of millions within its first few years= , further providing an ongoing revenue stream from the sales of printing consumable products for years to come.

SPECIAL INVESTMENT ALERT

Digital Color Print, Inc. (OTC Bulletin Board: DCPI)
Current Price: $1.25
Shares Outstanding: 24.6 Million
Market Capitalization: $31 Million
Short Term Target: $3.00
12 month Target: $9.00

A Few Reasons to Own DCPI:

Digital Color Print, Inc. ("DCPI"), through it's wholly owned su= bsidiary Logical Imaging Solutions ("LIS"), is in the business of supplying high-= speed digital printing systems and supplies to the commercial printing industry. The pri= nting systems are unique in technical concept and application. The systems are t= otally digital, designed to mount on existing offset web presses and significantl= y improve the functionality of the press, not as a replacement - but as an enhancement. The printing process is called Electron Beam Imaging ("E= BI"), and is significantly faster the convention laser printing - the only partially= competing technology.

Printing is America's third largest manufacturing industry; employing more= than 1.2 million people in almost 46,000 establishments. The printing industry,= during 2002, produced over $165 billion of printed products and purchased = $4.5 billion of hardware and $7.7 billion of consumable products. NYSE-li= sted Dover Corporation, the largest manufacturer of offset web presses, estimates tha= t there are more than 35,000 presses installed in the U.S., with a press cos= ting from $150,000 to several million and using as much as $10,000 of consumabl= e products per month.

Offset presses print all types of documents; forms, labels, tickets, tags,= advertisements and direct mail pieces, at production rates of 500 pages-per-minute ("ppm") to thousands of ppm. However, the print= ed materials produced are each identical, as each image printed is the "offset&quo= t; inked image derived from the printing plates that are mounted on the offset press. The= great limitations of the offset process are that each image (page) remains ident= ical unless the printing plates are changed. Also the inking of the plates requ= ires the laborious tasks of mixing the inks for each plate, inking the plates a= nd then cleaning the press for the next job. If the print job requires variab= le information, such as; name, address, bar codes, dates, prices, this must b= e added in a distinctly separate print operation. Typically this task is per= formed by expensive data processing laser printers, manufactured by either Xerox,= IBM or Oce' (Formerly, Siemens Printing Systems). The laser printers print onl= y in black.

LIS printing systems are designed to mount directly on most offset web pre= sses and allow for the printing of any type of data or graphics, without limita= tion, and in line with the offset presses traditional production of a colorful e= nd product. As a simple example: In the production of an event ticket such as= a "Superbowl" ticket, all fixed or non-variable information, such as the "colorful = photo-quality" front cover and the stadium rules and disclaimers on t= he reverse side of the ticket are produced by plates on an offset press; identical information on each ticket. A second printing process is then required to = add the variable information, which includes the section, seat and row numbers= , price and date of the event. This function can be accomplished, in line, b= y an LIS provided system.

LIS printing systems are entirely digital and are dry "Toner" ba= sed, which precludes the laborious press set-up and clean-up tasks, ink mixing and st= orage and the production of printing plates. The pressman simply runs the paper = directly through LIS's printer and it becomes an integral part of the pres= s and the starting and stopping of the press and the placement of the digital ob= ject on the page are all under the control of LIS proprietary software.

NYSE-listed Dover Corporation, the largest manufacturer of offset web pres= ses, estimates that there are more than 35,000 presses installed in the U.S., w= ith a press costing from $150,000 to several million and using as much as $10,00= 0 of consumable products per month. DCPI's DIGITALCOLORPRESS was designed= to be installed on the majority of these presses, extending their life and utili= ty by providing the printing of computer generated variable data in-line with th= e offset printing function. Further, the system eliminates the need for prep= aring and storing printing plates, and inks and the expensive tasks of setting u= p a press for a print run, followed by tearing down after each job, cleaning t= he press and setting up for the next print job. DCPI estimates that the major= ity of printers will upgrade to color during the first two years of the DIGITALCOLORPRESS availability and thousands more commercial printer= s will purchase systems through DCPI's direct sales force and distribution channe= l during the next two years.

DCPI's first growth step is to increase consumable inventory to support ex= isting LIS systems, each installation generates about $6,000 per month in consuma= ble purchases. Secondly, to make LIS's unique color press available from inven= tory and expand the current number of installed sites. Thirdly, make the produc= t offering available to the commercial printing industry. Large tasks, but currently without any perceived competition or technological limitation.
This stock will see major upward movement in the next several weeks. Ri= ght now, DCPI is one of the Street's best kept secrets, but it will not remain= that way for long. This is a unique opportunity to get in while trading levels = are still low. As the Company goes forward with its business plan and signs ma= jor new contracts, this stock will move quickly. This is your last chance to i= nvest before DCPI begins major price appreciation. This stock could reach $3.50 = in the next five trading days!

The writers, PR firm, mailers involved in the creation, and distribution o= f the information above are not a registered broker/dealer and may not sell, off= er to sell or offer to buy any security. This profile is not a solicitation or recommendation to buy, sell securities. An offer to buy or sell can be mad= e only with accompanying disclosure documents from the company offering or sellin= g securities and only in the states and provinces for which they are approve= d. The material in this release is intended to be strictly informational and base= d on assumptions rather than fact. The companies that are discussed in this rel= ease have not approved the statements made in this release nor approved the tim= ing of this release. All statements and expressions are the sole opinion of the creators and are subject to change without notice. Information in this rel= ease is derived from a variety of sources including that company's publicly disseminated information, third parties and the writers research and optim= istic speculation. The accuracy or completeness of the information is not warran= ted and is only as reliable as the sources from which it was obtained. All inv= olved in the creation and distribution of this profile/release disclaims any and= all liability as to the completeness or accuracy of the information contained = and any omissions of material fact in this release. The release may contain technical and factual inaccuracies or typographical errors. It is strongly= recommended that any purchase or sale decision be discussed with a financi= al adviser, or a broker-dealer, or a member of any financial regulatory bodie= s. Investment in the securities of the companys discussed in this release is = highly speculative and carries a high degree of risk. All persons involved in the= creation and distribution of the information in this letter is not liable = for any investment decisions by its readers or subscribers. Investors are caut= ioned that they may lose all or a portion of their investment if they make a pur= chase in this security mentioned. Any mention of past profiles and returns are n= ot our stock picks.

This profile is not without bias, and is a paid release. Writers and maile= rs have been compensated for the dissemination of company information on beha= lf of one or more of the companies mentioned in this release. Parties involved i= n the creation and distribution of this profile have been compensated 40,000 dol= lars by a third party (third party), who is nonaffiliated, for services provide= d including dissemination of company information in this release. PR and oth= er individuals and other creators and mailers of this letter will sell all of= its original shares during the distribution of this profile. Parties involved = may immediately sell some or any shares in a profiled company held by profile = creators and may have previously sold shares in a profiled company held by= PR Individuals involved. Our Optin mailing services for a company may cause t= he company's stock price to increase, in which event involved parties would m= ake a profit when it sells its stock in the company. In addition, our selling of= a company's stock may have a negative effect on the market price of the stoc= k. The past profiles are only the winners not all of our recommendations.

----02396606481091721437-- From eap-admin@frascone.com Thu Jun 10 01:40:24 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA21690 for ; Thu, 10 Jun 2004 01:40:23 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 19932209BA; Thu, 10 Jun 2004 01:27:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 491A9206BC; Thu, 10 Jun 2004 01:27:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 9A3BA206B6 for ; Thu, 10 Jun 2004 01:26:55 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id AFD1320674 for ; Thu, 10 Jun 2004 01:26:53 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id 7F32189870; Thu, 10 Jun 2004 08:40:04 +0300 (EEST) Message-ID: <40C7F33D.6060806@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Florent Bersani Cc: eap@frascone.com Subject: Re: [eap] Another two minor and finicky IANA considerations questions for RFC3748 References: <40C59C27.6070209@rd.francetelecom.fr> In-Reply-To: <40C59C27.6070209@rd.francetelecom.fr> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 08:35:57 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi Florant, Thanks again for looking into the details! > While reviewing again RFC 3748b, I just came across two little (and > fairly uninteresting I admit) questions/remarks (that may however help > RFC 3748 understanding in the future: > > 1) It is apparently not specified how expanded (method) types for > vendor-ID 0 (IETF) can be allocated (e.g. Designated Expert, with > Specification Required or standards action, FCFS, ...). > In section 6.2 we indeed only read: > "Method Type values 256-4294967295 may be allocated after Type values > 1-191 have been allocated." > I know we've probably got time before this happens but I just feel > reluctant to leave an incomplete spec behind us ;-) I think it would make sense to add ", through the advice of a Designated Expert, with Specification Required" to the end of the sentence that you quoted. Henrik tells me that he still can send a change to the RFC editor. > 2) The (non)-use of 0 as packet code or method type > > The newbie I am is pretty sure that there are good reasons why EAP did > not start its code and type space at 0 (and I'd be more than thankful to > anybody who could tell me why) but I find the current wording about not > using this value a (very little) bit confusing. I'm not sure what the history was. We probably shouldn't allocate that number to anyone, someone's code might break if it uses 0 to represent "no method" or "no EAP" or something like that. > In section 6.1 of RFC 3748b we read: > "Packet Codes have a range from 1 to 255" and on the IANA website > (http://www.iana.org/assignments/eap-numbers) we find: > > "(last updated 12 April 2004) > Packet Codes: > Value Description Reference > 1 Request [RFC-ietf-eap-rfc2284bis-09.txt] > 2 Response [RFC-ietf-eap-rfc2284bis-09.txt] > 3 Success [RFC-ietf-eap-rfc2284bis-09.txt] > 4 Failure [RFC-ietf-eap-rfc2284bis-09.txt] > 5-255 Unallocated" > > In section 6.2 of RFC 3748b we read: > "The original EAP method Type space has a range from 1 to 255" and on > the IANA website (http://www.iana.org/assignments/eap-numbers) we find: > > "(last updated 12 April 2004) > ... > Value Description Reference > 0 RESERVED > 1 Identity [RFC-ietf-eap-rfc2284bis-09.txt] > ..." > > Indeed, the value 0 is used in the NAK response. > > My suggestion would be to find a way to simply reflect this usage in RFC > 3748 and for IANA. > My preference would be adding a small reminder on the value 0 usage in > RFC 3748 section 6.2 and updating the IANA website to also refer to RFC > 3748 for this value. I am ready to propose some text if people feel like > making this minor and unimportant change. I think we could add "0 RESERVED" to the IANA page of packet codes (after we have published the RFC). > P.S: BTW, it seems like we (EAP and/or IANA) have not captured the point > I raised earlier on Method Type 7&8 > (http://mail.frascone.com/pipermail/public/eap/2004-May/002486.html). > Again, I am ready to propose some text if people feel like making this > minor and unimportant change (and I concurred to Jari's proposal > "allocated but unused"). There has been some new confusion about the exact status of 7 & 8. We don't want to say anything about them at this point in time, at least not in RFC 3748. I think we can update the IANA web page later if we get more confident that they indeed are not used. --Jari _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Thu Jun 10 03:58:20 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA11130 for ; Thu, 10 Jun 2004 03:58:20 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 543B220406; Thu, 10 Jun 2004 03:45:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id AA92720A9F; Thu, 10 Jun 2004 03:45:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id BA1DD20A9F for ; Thu, 10 Jun 2004 03:44:13 -0400 (EDT) Received: from av3-1-sn1.fre.skanova.net (av3-1-sn1.fre.skanova.net [81.228.11.109]) by mail.frascone.com (Postfix) with ESMTP id 0CB4520406 for ; Thu, 10 Jun 2004 03:44:12 -0400 (EDT) Received: by av3-1-sn1.fre.skanova.net (Postfix, from userid 502) id 07C7B3809C; Thu, 10 Jun 2004 09:57:24 +0200 (CEST) Received: from smtp3-1-sn1.fre.skanova.net (smtp3-1-sn1.fre.skanova.net [81.228.11.163]) by av3-1-sn1.fre.skanova.net (Postfix) with ESMTP id ED2AF37E54; Thu, 10 Jun 2004 09:57:23 +0200 (CEST) Received: from chardonnay.levkowetz.com (h195n1fls311o871.telia.com [213.64.174.195]) by smtp3-1-sn1.fre.skanova.net (Postfix) with ESMTP id 1785037E51; Thu, 10 Jun 2004 09:57:17 +0200 (CEST) Received: from chardonnay ([127.0.0.1]) by chardonnay.levkowetz.com with smtp (Exim 3.36 #1 (Debian)) id 1BYKQu-00026B-00; Thu, 10 Jun 2004 09:57:08 +0200 From: Henrik Levkowetz To: jari.arkko@piuha.net Cc: Florent Bersani , eap@frascone.com Subject: Re: [eap] Another two minor and finicky IANA considerations questions for RFC3748 Message-Id: <20040610095707.5219a901@chardonnay> In-Reply-To: <40C7F33D.6060806@piuha.net> References: <40C59C27.6070209@rd.francetelecom.fr> <40C7F33D.6060806@piuha.net> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 09:57:07 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi, Thursday 10 June 2004, Jari Arkko wrote in reply to Florent: > > 1) It is apparently not specified how expanded (method) types for > > vendor-ID 0 (IETF) can be allocated (e.g. Designated Expert, with > > Specification Required or standards action, FCFS, ...). > > In section 6.2 we indeed only read: > > "Method Type values 256-4294967295 may be allocated after Type values > > 1-191 have been allocated." > > I know we've probably got time before this happens but I just feel > > reluctant to leave an incomplete spec behind us ;-) > > I think it would make sense to add ", through the advice of a > Designated Expert, with Specification Required" to the end of the sentence > that you quoted. Henrik tells me that he still can send a change > to the RFC editor. Ok, so the proposed change is as follows: Section 6.2., para. 3: OLD: Method Type 254 is allocated for the Expanded Type. Where the Vendor-Id field is non-zero, the Expanded Type is used for functions specific only to one vendor's implementation of EAP, where no interoperability is deemed useful. When used with a Vendor-Id of zero, method Type 254 can also be used to provide for an expanded IETF method Type space. Method Type values 256-4294967295 may be allocated after Type values 1-191 have been allocated. NEW: Method Type 254 is allocated for the Expanded Type. Where the Vendor-Id field is non-zero, the Expanded Type is used for functions specific only to one vendor's implementation of EAP, where no interoperability is deemed useful. When used with a Vendor-Id of zero, method Type 254 can also be used to provide for an expanded IETF method Type space. Method Type values 256-4294967295 may be allocated after Type values 1-191 have been allocated, on the advice of a Designated Expert, with Specification Required. I'll send it in. Henrik _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Thu Jun 10 03:58:37 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA11148 for ; Thu, 10 Jun 2004 03:58:37 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id CBEFE20A9F; Thu, 10 Jun 2004 03:45:16 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id D3FB320AA3; Thu, 10 Jun 2004 03:45:07 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 7E24220A9F for ; Thu, 10 Jun 2004 03:44:16 -0400 (EDT) Received: from p-mail1.rd.francetelecom.com (p-mail1.rd.francetelecom.com [195.101.245.15]) by mail.frascone.com (Postfix) with ESMTP id 8756A20406 for ; Thu, 10 Jun 2004 03:44:14 -0400 (EDT) Received: from parmhs4.rd.francetelecom.fr ([10.193.117.63]) by parsmtp1.rd.francetelecom.com with Microsoft SMTPSVC(6.0.3790.0); Thu, 10 Jun 2004 09:57:33 +0200 Received: from rd.francetelecom.fr ([10.193.167.110]) by parmhs4.rd.francetelecom.fr with Microsoft SMTPSVC(5.0.2195.6747); Thu, 10 Jun 2004 09:57:20 +0200 Message-ID: <40C81524.7080703@rd.francetelecom.fr> From: Florent Bersani User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "eap@frascone.com" Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit X-OriginalArrivalTime: 10 Jun 2004 07:57:20.0033 (UTC) FILETIME=[8E3DF910:01C44EC0] X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Some (minor) editorial comments on RFC 3748b Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 10:00:36 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 8bit Hi all, Below are some (minor) editorial comments that came to my mind while reading the latest version of EAP I am aware of (RFC 3748.b). Much like my comments on the EAP state machine, I know that these comments may come much too late :-(( Hence, I included in this mail only the editorial comments that I think are (relatively) easy to address (in a mail to come, I'll formalize my other technical and general comments on EAP, being aware that they can't be taken into account for they come well after the battle) Comment #1 Section 1.2 Some entries start with a capital letter (e.g. Supplicant, Displayable Message, ...) while others do not (authenticator, peer,...). Suggested change: adopt a constant behavior (namely start all entries with a capital letter) This capitalization problem is all the more shocking with "authenticator" because this entry is written "authenticator" and in the definition text we may read authenticator with a capital A ("The term Authenticator is used in [IEEE-802.1X ], and has the same meaning in this document.") Suggested change: adopt a constant behavior for this term throughout the document. Comment #2 Section 1.2 I disagree with the RFC 3748 definition of MIC: "Message Integrity Check (MIC) A keyed hash function used for authentication and integrity protection of data. This is usually called a Message Authentication Code (MAC), but IEEE 802 specifications (and this document) use the acronym MIC to avoid confusion with Medium Access Control." Keying a hash function is not the only cryptographic way to provide data origin authentication and I do not see why EAP mandates such a restriction for its MICs. Suggested changes: either adopt/adapt the IEEE 802.11i definition "Message Integrity Code (MIC): A value generated by a symmetric key cryptographic function. If the input data is changed, a new value cannot be correctly computed without knowledge of the symmetric key. Thus, the secret key protects the input data from undetectable alteration. This is traditionally called a Message Authentication Code, or MAC, but the acronym MAC is already reserved for another meaning in this standard." (BTW, IEEE 802.11i quite logically mandates MIC/MAC to come from symmetric key cryptography since this is how the term MAC is commonly used, however it again worth noting that there are asymmetric techniques than can also provide data origin authentication - IINM, symmetric cryptography is rather used for data origin authentication for performance reasons) or this one "Message Integrity Code (MIC) Informally, the purpose of a MIC is to facilitate, without the use of any additional mechanisms, assurances regarding both the source of a message and its integrity, please refer to [HAC] for more details This is usually called a Message Authentication Code (MAC), but IEEE 802 specifications (and this document) use the acronym MIC to avoid confusion with Medium Access Control." where [HAC] = Menezes, A. et al., �Handbook of Applied Cryptography�, CRC Press, 1996. Comment #3 Section 1.2 Rearrange section 1.2 with the entries sorted in alphabetical order to improve readability Comment #4 Section 5.1 2nd paragraph typo: replace "Some EAP implementations piggy-back various options into the Identity Request after a NUL-character" with "Some EAP implementations piggy-back various options into the Identity Request after a NULL-character" (the typo is on NULL IINM) Also, it appears that sometimes NULL is capitalized, sometimes it isn't. Suggested change: adopt a constant behavior Hope this helps and you aren't upset by my being so particular about EAP WG documents, Florent _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Thu Jun 10 06:55:19 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA18652 for ; Thu, 10 Jun 2004 06:55:19 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 35DA420F5D; Thu, 10 Jun 2004 06:42:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id D4997206DC; Thu, 10 Jun 2004 06:42:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 8A869206DC for ; Thu, 10 Jun 2004 06:41:27 -0400 (EDT) Received: from mailgw.local.ipunplugged.com (unknown [213.80.52.78]) by mail.frascone.com (Postfix) with ESMTP id 94AD020379 for ; Thu, 10 Jun 2004 06:41:25 -0400 (EDT) Received: from zinfandel.local.ipunplugged.com (chardonnay.local.ipunplugged.com [192.168.4.44]) by mailgw.local.ipunplugged.com (8.12.8/8.12.3) with SMTP id i5AAsaMI020678; Thu, 10 Jun 2004 12:54:38 +0200 From: Henrik Levkowetz To: Florent Bersani Cc: "eap@frascone.com" Subject: Re: [eap] Some (minor) editorial comments on RFC 3748b Message-Id: <20040610125435.3fd1f55a@zinfandel.local.ipunplugged.com> In-Reply-To: <40C81524.7080703@rd.francetelecom.fr> References: <40C81524.7080703@rd.francetelecom.fr> X-Mailer: Sylpheed version 0.9.10claws (GTK+ 1.2.10; i386-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Scanned: clamd / ClamAV version 0.72, clamav-milter version 0.72 on mailgw.local.ipunplugged.com X-Virus-Status: Clean X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 12:54:35 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi Florent, You're rather impressive in your ability to see mistakes in details, aren't you! :-) On Thursday, 10 Jun 2004, Florent Bersani wrote: ... > Comment #1 > > Section 1.2 > > Some entries start with a capital letter (e.g. Supplicant, Displayable > Message, ...) while others do not (authenticator, peer,...). > Suggested change: adopt a constant behavior (namely start all entries > with a capital letter) > > This capitalization problem is all the more shocking with > "authenticator" because this entry is written "authenticator" and in the > definition text we may read authenticator with a capital A ("The term > Authenticator is used in [IEEE-802.1X], > and has the same meaning in this document.") > Suggested change: adopt a constant behavior for this term throughout the > document. Proposed change: Section 1.2, para. 2: OLD: authenticator The end of the link initiating EAP authentication. The term Authenticator is used in [IEEE-802.1X], and has the same meaning in this document. NEW: authenticator The end of the link initiating EAP authentication. The term authenticator is used in [IEEE-802.1X], and has the same meaning in this document. > Comment #2 > > Section 1.2 > > I disagree with the RFC 3748 definition of MIC: .... Someone else will have to take a position on this one, I can't argue strongly either way. > > Comment #3 > > Section 1.2 > > Rearrange section 1.2 with the entries sorted in alphabetical order to > improve readability I'd rather not do this now... > Comment #4 > > Section 5.1 2nd paragraph typo: replace "Some EAP implementations > piggy-back various options into the Identity Request after a > NUL-character" with "Some EAP implementations piggy-back various options > into the Identity Request after a NULL-character" (the typo is on NULL IINM) Nope, here the name of the ASCII character is "NUL", not "NULL". Other places in the document the term "null" is used as a term in itself, and then I've spelled it "null", indeed. There's one place where I've missed this distinction though, giving this correction: Appendix A., para. 12: OLD: o It is now required in Section 5.1 that if the Type-Data field of an Identity Request contains a null character, only the part before the null is displayed. RFC 2284 prohibits the Null termination of the Type-Data field of Identity messages. This rule has been relaxed for Identity Request messages and the Identity Request Type-Data field may now be null terminated. NEW: o It is now required in Section 5.1 that if the Type-Data field of an Identity Request contains a NUL-character, only the part before the null is displayed. RFC 2284 prohibits the null termination of the Type-Data field of Identity messages. This rule has been relaxed for Identity Request messages and the Identity Request Type-Data field may now be null terminated. > Hope this helps and you aren't upset by my being so particular about EAP > WG documents, Sooner (during last call, for instance :) would have been better, but now is better than never, as far as I'm concerned. No upsets. Regards, Henrik _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From pnzmohwotwz@yahoo.com Thu Jun 10 07:04:38 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA18966 for ; Thu, 10 Jun 2004 07:04:38 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BYNMK-0001GG-GN for eap-archive@ietf.org; Thu, 10 Jun 2004 07:04:36 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BYNLB-0000Hy-00 for eap-archive@ietf.org; Thu, 10 Jun 2004 07:03:25 -0400 Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1BYNJp-0006fV-00 for eap-archive@ietf.org; Thu, 10 Jun 2004 07:02:01 -0400 Received: from [221.152.36.213] (helo=65.246.255.50) by mx2.foretec.com with smtp (Exim 4.24) id 1BYNJr-0006UG-4K for eap-archive@ietf.org; Thu, 10 Jun 2004 07:02:04 -0400 Content-Type: text/html; MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Subject: Fwd: what is this? From: "Issac Bridges" To: eap-archive@ietf.org X-Priority: 3 Date: Thu, 10 Jun 2004 11:00:28 -0100 Message-Id: X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=7.5 required=5.0 tests=FORGED_RCVD_NET_HELO, FORGED_YAHOO_RCVD,HTML_40_50,HTML_IMAGE_ONLY_04,HTML_MESSAGE, MIME_HTML_NO_CHARSET,MIME_HTML_ONLY,PRIORITY_NO_NAME, RCVD_NUMERIC_HELO autolearn=no version=2.60 X-Spam-Report: * 0.3 RCVD_NUMERIC_HELO Received: contains a numeric HELO * 0.5 HTML_40_50 BODY: Message is 40% to 50% HTML * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 1.5 HTML_IMAGE_ONLY_04 BODY: HTML: images with 200-400 bytes of words * 0.7 MIME_HTML_NO_CHARSET RAW: Message text in HTML without charset * 3.0 FORGED_RCVD_NET_HELO Host HELO'd using the wrong IP network * 0.5 FORGED_YAHOO_RCVD 'From' yahoo.com does not match 'Received' headers * 0.8 PRIORITY_NO_NAME Message has priority setting, but no X-Mailer Content-Transfer-Encoding: 7Bit He delegated his power to Osaul Tovkatch, and gave with it a strict command to appear with his whole force at the Setch the very instant he should receive a message from him.

Stop further messages

It has as many victims recorded against it as has the saloon, and its work of destruction is. The coal glowed in the grate with a splendid blaze: all the gas-burners were lighted, and so were everybody's eyes. From eap-admin@frascone.com Thu Jun 10 07:06:34 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA19080 for ; Thu, 10 Jun 2004 07:06:34 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 7386320F63; Thu, 10 Jun 2004 06:53:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id E35D72029F; Thu, 10 Jun 2004 06:53:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 8AFE620F62 for ; Thu, 10 Jun 2004 06:51:55 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id 4FF6920CDB for ; Thu, 10 Jun 2004 06:51:53 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id 116CE8986F; Thu, 10 Jun 2004 14:05:05 +0300 (EEST) Message-ID: <40C83F6A.7010909@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Henrik Levkowetz Cc: Florent Bersani , "eap@frascone.com" Subject: Re: [eap] Some (minor) editorial comments on RFC 3748b References: <40C81524.7080703@rd.francetelecom.fr> <20040610125435.3fd1f55a@zinfandel.local.ipunplugged.com> In-Reply-To: <20040610125435.3fd1f55a@zinfandel.local.ipunplugged.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 14:00:58 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi, I agree with the edits that Florent and Henrik propose below. I don't think we should change the MIC definition, or rearrange text parts (comment #3) now. --Jari Henrik Levkowetz wrote: > Hi Florent, > > You're rather impressive in your ability to see mistakes in details, > aren't you! :-) > > On Thursday, 10 Jun 2004, Florent Bersani wrote: > ... > >>Comment #1 >> >>Section 1.2 >> >>Some entries start with a capital letter (e.g. Supplicant, Displayable >>Message, ...) while others do not (authenticator, peer,...). >>Suggested change: adopt a constant behavior (namely start all entries >>with a capital letter) >> >>This capitalization problem is all the more shocking with >>"authenticator" because this entry is written "authenticator" and in the >>definition text we may read authenticator with a capital A ("The term >>Authenticator is used in [IEEE-802.1X], >>and has the same meaning in this document.") >>Suggested change: adopt a constant behavior for this term throughout the >>document. > > > Proposed change: > Section 1.2, para. 2: > OLD: > > authenticator > The end of the link initiating EAP authentication. The term > Authenticator is used in [IEEE-802.1X], and has the same > meaning in this document. > > NEW: > > authenticator > The end of the link initiating EAP authentication. The term > authenticator is used in [IEEE-802.1X], and has the same > meaning in this document. > > > >>Comment #2 >> >>Section 1.2 >> >>I disagree with the RFC 3748 definition of MIC: > > .... > > Someone else will have to take a position on this one, I can't argue > strongly either way. > > >>Comment #3 >> >>Section 1.2 >> >>Rearrange section 1.2 with the entries sorted in alphabetical order to >>improve readability > > > I'd rather not do this now... > > >>Comment #4 >> >>Section 5.1 2nd paragraph typo: replace "Some EAP implementations >>piggy-back various options into the Identity Request after a >>NUL-character" with "Some EAP implementations piggy-back various options >>into the Identity Request after a NULL-character" (the typo is on NULL IINM) > > > Nope, here the name of the ASCII character is "NUL", not "NULL". Other > places in the document the term "null" is used as a term in itself, and > then I've spelled it "null", indeed. There's one place where I've missed > this distinction though, giving this correction: > > Appendix A., para. 12: > OLD: > > o It is now required in Section 5.1 that if the Type-Data field of > an Identity Request contains a null character, only the part > before the null is displayed. RFC 2284 prohibits the Null > termination of the Type-Data field of Identity messages. This > rule has been relaxed for Identity Request messages and the > Identity Request Type-Data field may now be null terminated. > > NEW: > > o It is now required in Section 5.1 that if the Type-Data field of > an Identity Request contains a NUL-character, only the part > before the null is displayed. RFC 2284 prohibits the null > termination of the Type-Data field of Identity messages. This > rule has been relaxed for Identity Request messages and the > Identity Request Type-Data field may now be null terminated. > > > > >>Hope this helps and you aren't upset by my being so particular about EAP >>WG documents, > > > Sooner (during last call, for instance :) would have been better, > but now is better than never, as far as I'm concerned. No upsets. > > Regards, > > Henrik > _______________________________________________ > eap mailing list > eap@frascone.com > http://mail.frascone.com/mailman/listinfo/eap > > _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From spokesmendh@flashmail.com Thu Jun 10 07:10:52 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA19379 for ; Thu, 10 Jun 2004 07:10:51 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BYNSL-00071V-IR for eap-archive@ietf.org; Thu, 10 Jun 2004 07:10:49 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BYNQu-00061G-00 for eap-archive@ietf.org; Thu, 10 Jun 2004 07:09:22 -0400 Received: from pns03-204-157.inter.net.il ([80.230.204.157]) by ietf-mx with smtp (Exim 4.12) id 1BYNPM-0003Kw-00; Thu, 10 Jun 2004 07:07:49 -0400 X-Message-Info: IFSTeWQ2sFGbCe07Xd0+APLAm2cTIBP Received: from ukeuddar12.cox.net ([90.240.66.70]) by mp01-f58.hotmail.com with Microsoft SMTPSVC(5.0.2195.6824); Tue, 11 May 2004 16:04:41 +0300 Received: from Rosalieo27z1hmv5t ([163.32.49.0]) by fpqpdvsy53.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-0937476) with SMTP id <19992678567864.OIZO3308.fchsqmys20.cox.net@furrierh30p2juy9v> for ; Tue, 11 May 2004 08:57:41 -0400 Message-ID: <096120f7s136$46363668$lp3d1795@Rosalies82n2hqd7o> From: "Gena Helms" To: Subject: Newsletter #8970 Date: Tue, 11 May 2004 09:04:41 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--84481154772125994311" X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: Yes, hits=5.6 required=5.0 tests=FRONTPAGE,HTML_30_40, HTML_FONTCOLOR_BLUE,HTML_FONTCOLOR_GREEN,HTML_FONTCOLOR_RED, HTML_FONTCOLOR_UNSAFE,HTML_FONT_BIG,HTML_MESSAGE,LINES_OF_YELLING, MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,STOCK_PICK,SUBJ_HAS_UNIQ_ID autolearn=no version=2.60 X-Spam-Report: * 1.2 STOCK_PICK BODY: Offers a picked stock * 0.8 HTML_30_40 BODY: Message is 30% to 40% HTML * 0.1 HTML_FONTCOLOR_GREEN BODY: HTML font color is green * 0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue * 0.0 HTML_MESSAGE BODY: HTML included in message * 0.1 HTML_FONT_BIG BODY: HTML has a big font * 0.1 HTML_FONTCOLOR_UNSAFE BODY: HTML font color not in safe 6x6x6 palette * 0.0 LINES_OF_YELLING BODY: A WHOLE LINE OF YELLING DETECTED * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.1 HTML_FONTCOLOR_RED BODY: HTML font color is red * 1.6 FRONTPAGE BODY: Frontpage used to create the message * 0.2 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * 1.1 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts ----84481154772125994311 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable New Page 4

****DCPI****DCPI****DCPI****DCPI****DCPI****DCPI****DCPI***DCPI****= DCPI***

New York Times Financial Digest
Investor Alert on New Hot Issue

----84481154772125994311-- From eap-admin@frascone.com Thu Jun 10 07:20:22 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA19532 for ; Thu, 10 Jun 2004 07:20:21 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 35BA920F64; Thu, 10 Jun 2004 07:07:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id CD9A120CDB; Thu, 10 Jun 2004 07:07:02 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id BDA302029F for ; Thu, 10 Jun 2004 07:06:04 -0400 (EDT) Received: from p2.piuha.net (p2.piuha.net [131.160.192.2]) by mail.frascone.com (Postfix) with ESMTP id DEEB41FF8C for ; Thu, 10 Jun 2004 07:06:02 -0400 (EDT) Received: from piuha.net (p2.piuha.net [131.160.192.2]) by p2.piuha.net (Postfix) with ESMTP id 9D73A8986F; Thu, 10 Jun 2004 14:19:15 +0300 (EEST) Message-ID: <40C842BC.2010007@piuha.net> From: Jari Arkko Reply-To: jari.arkko@piuha.net Organization: None User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Florent Bersani Cc: Henrik Levkowetz , Bernard Aboba , eap@frascone.com Subject: Re: [eap] Issue 245: EAP Restart Issue References: <40C34D08.6000201@piuha.net> <20040607002602.38bd8868@chardonnay> <40C59627.2080907@rd.francetelecom.fr> In-Reply-To: <40C59627.2080907@rd.francetelecom.fr> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 14:15:08 +0300 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit I think you are right in worrying about undamped link down indications. However, I think the current text is clear enough. What is referred to as "lower layer failure indication" is not to be taken as the "IEEE 802.11 unreliable indication of failure". The text that you quoted already says that damping is advisable; I read that that as meaning that in the rest of the document, when it says "lower layer indiciation", its already damped. (But I confess that my interpretation may be biased by the desire to get this RFC out.) --Jari Florent Bersani wrote: > Well, > > I've got a fuzzy feeling about this issue, especially when I take a look > at rfc3748.b.txt in section 7.12: > > "In IEEE 802.11, a "link down" indication is an unreliable indication of > link failure, since wireless signal strength can come and go and may be > influenced by radio frequency interference generated by an attacker. To > avoid unnecessary resets, it is advisable to damp these indications, > rather than passing them directly to the EAP. Since EAP supports > retransmission, it is robust against transient connectivity losses. " > > Perhaps it's my unskilled understanding of the problem, but I find > "indication of link failure" and "lower layer failure indication" quite > confusing :-( > * If they refer to the same thing, then I find the proposed changed to > resolve issue 245 contradictory to the RFC 3748 text quoted here above > * If not, I'd be more than happy to get some clarification :-) > > Any suggestion? > > Florent > > P.S: > > My two cents here is that there might be a confusion arising from "lower > layer". Indeed, I guess when EAP is used for wireless LANs, lower layer > could apply to two layers: the IEEE 802.11 layer and the IEEE 802.1X/11i > layer. Stricto sensu, I think that in this case, lower layer should only > refer to 802.1X. If this is the case, then the problem I am trying to > consider reduces to know when 802.1X considers that it should restart > due to its lower layer (i.e. 802.11) link failure. Depending on this > decision, the RFC 3748 text quoted here above might become useless (i.e. > since 802.1X could be damping the link failure indications, there would > be no need to mandate that EAP do so - but I believe without any > justification that this is not the case for 802.1X). I leave the debate > on 802.1X/EAP to the group of well versed people in that matter (which I > unfortunately do not -yet? - belong to :-() > > However, the problem with this P.S is that it is too 802.1X centric (as > much of EAP probably but this is another debate). There could be some > cases in which EAP is run directly over a link layer and has no > intermediate layer (like 802.1X) to do the possible damping. If this is > the case, we really want to make sure that the "damping" mechanism used > by EAP is really media independent and works as well with 802.1X as > without. If 802.1X does no damping (which is probably the case), then > this problem is easy. If it does, well? > > Not sure I have been very clear here :-( Hope however this helps. > > > Henrik Levkowetz wrote: > >> I have included this change in the Auth. 48 corrected rfc3748 text - see >> 'rfc3748.b.txt' on http://ietf.levkowetz.com/drafts/eap/rfc2248bis/ >> >> Henrik >> >> Sunday 6 June 2004, Jari Arkko wrote: >> >> >>> I think the suggested change is OK. >>> >>> --Jari >>> >>> Bernard Aboba wrote: >>> >>> >>>> In going over the discussion on Issue 241, John Vollbrecht made a >>>> suggestion for a change to RFC 3748 that I think corrects an >>>> oversight. As >>>> the document is now Author 48 hours, it is still possible to correct >>>> the >>>> problem if the WG approves. >>>> >>>> -------------------------------------------------------------------------- >>>> >>>> Issue 245: EAP Restart Issue >>>> Submitter name: John Vollbrecht >>>> Submitter email address: jrv@umich.edu >>>> Date first submitted: 5/7/2004 >>>> Reference: http://mail.frascone.com/pipermail/eap/2004-May/002460.html >>>> Document: RFC2284bis-09 >>>> Comment type: T >>>> Priority: S >>>> Section: 4.1 >>>> Rationale/Explanation of issue: >>>> >>>> Section 4.1 of RFC 3748 states: >>>> >>>> "Additional Request packets MUST be sent until a valid Response >>>> packet is >>>> received, or an optional retry counter expires." >>>> >>>> Where the lower layer terminates the initial session and causes a >>>> restart, >>>> if EAP knows that the lower layer is terminated then I am not sure >>>> why it >>>> would continue to resend. >>>> >>>> Perhaps we should change this to: >>>> >>>> "Additional Request packets MUST be sent until a valid Response >>>> packet is >>>> received, an optional retry counter expires, or a lower layer failure >>>> indication is received." >>>> >>> >>> _______________________________________________ >>> eap mailing list >>> eap@frascone.com >>> http://mail.frascone.com/mailman/listinfo/eap >>> >> >> >> >> _______________________________________________ >> eap mailing list >> eap@frascone.com >> http://mail.frascone.com/mailman/listinfo/eap >> >> >> > > _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From eap-admin@frascone.com Thu Jun 10 08:44:24 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA29476 for ; Thu, 10 Jun 2004 08:44:22 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id B56BA20322; Thu, 10 Jun 2004 08:31:07 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id EA52D206D6; Thu, 10 Jun 2004 08:31:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id AA36B20894 for ; Thu, 10 Jun 2004 08:30:28 -0400 (EDT) Received: from p-mail2.rd.francetelecom.com (p-mail2.rd.francetelecom.com [195.101.245.16]) by mail.frascone.com (Postfix) with ESMTP id 6E05220322 for ; Thu, 10 Jun 2004 08:30:26 -0400 (EDT) Received: from parmhs4.rd.francetelecom.fr ([10.193.117.63]) by parsmtp2.rd.francetelecom.com with Microsoft SMTPSVC(6.0.3790.0); Thu, 10 Jun 2004 14:43:37 +0200 Received: from rd.francetelecom.fr ([10.193.167.110]) by parmhs4.rd.francetelecom.fr with Microsoft SMTPSVC(5.0.2195.6747); Thu, 10 Jun 2004 14:43:36 +0200 Message-ID: <40C8583D.8040401@rd.francetelecom.fr> From: Florent Bersani User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "eap@frascone.com" Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 10 Jun 2004 12:43:36.0894 (UTC) FILETIME=[8C72F5E0:01C44EE8] X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Subject: [eap] Miscellaneous (unaddressable?) comments on RFC 3748 Sender: eap-admin@frascone.com Errors-To: eap-admin@frascone.com X-BeenThere: eap@frascone.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Discussion list for EAP List-Unsubscribe: , List-Archive: Date: Thu, 10 Jun 2004 14:46:53 +0200 X-Virus-Scanned: by AMaViS 0.3.12 (frascone.com) Content-Transfer-Encoding: 7bit Hi all, Below are some comments that came to my mind while reading the latest version of EAPbis I am aware of (namely RFC 3748b). I know that these comments,much like the ones I made on the EAP state machines very recently, may: * Come much too late (since IIRC RFC 3748 is now in AUTH48 so it shouldn't be the time IINM to propose any "real" changes to this document) * Be completely naive or off the rocket * Echo some comments that have already been made (although I tried my best to reread - and understand ;-) - the EAP issues tracked by Bernard) I just felt like making them: * Because the probability that they be of some help somehow is - I hope - non-zero * Because the probability that someone kindly replies to educate me, is - I hope - non-zero * For the record So here they go: Comment #1 - editorial/technical Section 1.2 At the entry "successful authentication" we can read: "Successful Authentication In the context of this document, "successful authentication" is an exchange of EAP messages, as a result of which the authenticator decides to allow access by the peer, and the peer decides to use this access. The authenticator's decision typically involves both authentication and authorization aspects; the peer may successfully authenticate to the authenticator, but access may be denied by the authenticator due to policy reasons." and at the end of section 1.2 : "Result indications A method provides result indications if after the method's last message is sent and received: 1) The peer is aware of whether it has authenticated the server, as well as whether the server has authenticated it. 2) The server is aware of whether it has authenticated the peer, as well as whether the peer has authenticated it. In the case where successful authentication is sufficient to authorize access, then the peer and authenticator will also know if the other party is willing to provide or accept access. This may not always be the case. An authenticated peer may be denied access due to lack of authorization (e.g., session limit) or other reasons. Since the EAP exchange is run between the peer and the server, other nodes (such as AAA proxies) may also affect the authorization decision. This is discussed in more detail in Section 7.16 <#section-7.16>. " The editorial part is that IMHO some wording in the latter text ("In the case where successful authentication is sufficient to authorize access") seem to contradict some of the former one (""successful authentication is an exchange of EAP messages, as a result of which the authenticator decides to allow access by the peer, and the peer decides to use this access. The authenticator's decision typically involves both authentication and authorization aspects"). Indeed the former text appears also to be self-contradictory ("the peer may successfully authenticate to the authenticator, but access may be denied by the authenticator due to policy reasons."). Perhaps, this comes from my poor mastery of the beautiful English language, perhaps it does not. I guess it could be worth fixing this wording (provided I am not the only one who finds it slippery ;-)) The technical part is another shot at some old stuff on EAP that has been noticed and discussed for instance in issues #2, 10, 26, 62, 80, 121, 212, 217, 222 First, partly mixing authentication and authorization is bad IMHO (by partly I typically mean what EAP is doing, i.e. a protected result within EAP of successful authentication may mean that the peer and the server have also performed authorization but also may not or this authorization may be modified by some other device -e.g. a proxy AAA server). But I think it is way too late to clean up things (and some people might also disagree with my POV) Second, I find the sentence "after the method's last message is sent and received" quite hypocrite. Since we are working with lower layers that may not guarantee delivery, we have to implement our own retransmission mechanism. To start with, let me allude to the well-known coordinated attack problem (see e.g. "Knowledge and common knowledge in a distributed environment" by Joseph Y. Halpern and Yoram Moses available at http://www.cs.cornell.edu/home/halpern/papers/common_knowledge.pdf) that may clarify what may be understood and achievable under the wording "result indication" and "synchronization of state". Let us now imagine for a second that an EAP dialog did not use EAP Success/Failure but only EAP requests/response pairs. In that case, there is still a possibility that the peer and a server fall out of sync, e.g. the server doesn't receive the peer's (last) answer and the peer doesn't receive any of the retransmitted requests. In this scenario, after a while, the peer will assume that its last message has been received and transition to success while the server will transition to failure. I am afraid there's not much we can do about his (i.e. since the ultimate common knowledge goal is unattainable, we have to place a threshold on how much we are willing to risk and to spend to mitigate this risk). A small point worth noting here, is the nature of EAP clients: do they continue to listen for a while or do they kill themselves immediately after their transition to success. The former case would be IINM similar to what IKE clients do and has many advantages IMHO while the latter would be problematic: how long has a peer has to wait before it transitions to success? because if it doesn't wait, it will probably miss any retransmission request and if it waits too long, this burdens the authentication with a fix delay (which some situations may really want to avoid). Let us now introduce the EAP Success/Failure and consider the following scenario: the peer receives a (cryptographically protected) request from the server saying that the server has successfully authenticated it (whatever that means ;-)). The peer decides to send a (cryptographically protected) response to the server saying that it (i.e. the peer) has also successfully authenticated the server. Thus, we can consider that both the peer and the server have protected result indications. But what happens then if an attacker intercepts (e.g. jams) the peer's response and sends an EAP-Success to the peer before the server has a chance to retransmit its request. Well, the peer will transition to success and if the EAP peer "kills itself" immediately after its transition to success, it won't get the server's retransmissions. Thus, the server will go to failure while the peer will believe they are both in the success state despite the protected result indications:-( Again here, the fixes I am aware of do not completely solve this problem, imply a trade off between efficiency and resilience to this problem or probably require modifications to EAP peer's implementations (if they "kill themselves after success" which is what most do IMHO though I have absolutely no justification for this opinion - I intend to test this in the near future). My main point in this discussion is that I think that EAP could (should?) have had: 1) A (more thorough) discussion of these Dos-like issues (e.g. in its Security considerations section). Indeed, my feeling as I have already expressed about DoS is that it is important to distinguish between attacks that are a "real" DoS and attacks that aren't (e.g.if an attacker jams the 802.11 frequency with a microwave oven, there's not much to do to prevent it - the best one can hope is to detect this and possibly catch the attacker). Discussion on this in RFC 3748 would have shown what had been considered (and mitigated or not) by the group 2) A clearer goal that it advertises against its applications/higher layers. For instance, do the higher layers/applications need to do key confirmation after a successful authentication - and are they able to do any better than EAP on that regard? Last, let me remind the courageous reader that has managed to read all this that I am quite a newbie to protocol design, cryptography, DoS,... so the discussion here above may be completely stupid, have ignored EAP discussions/new articles/techniques on the matter... Comment #2 - editorial/technical Section 2.2 says: "Within EAP, the Type field functions much like a port number in UDP or TCP" Although I find the analogy somehow enlightening in some way, I am concerned by a potential misunderstanding it could lead to (though the sentence that follows my quotation does provide some clarification): is an EAP peer capable of having multiple EAP conversations (possibly of the same method type) in parallel? Here's my tentative answer: if the EAP peer is talking to different EAP servers or different authenticators that it can distinguish (for instance if an EAP peer talks over 802.11 to two different APs, it could demultiplex its conversations according to the AP MAC address) then there's no problem. However, if the peer tries to talk in parallel to the same authentication server/authenticator using the same method type, I bet that we will get into trouble due to the very small EAP identifier space... Does my tentative answer makes sense? [Here again a comparison with IKEv2 seems enlightening to me since IKEv2 would be able IINM to handle the latter scenario] Perhaps it would have been worth mentioning this triviality? Comment #3 - technical Here again, this is about DoS resilience. While rereading EAP and the EAP state machines, I did not find mention of the possibility for a peer/server at some point to cache multiple requests/responses to improve its resilience against someone sending bogus packets (this concerns EAP as well as EAP authentication methods). The is loosely similar for instance to the point made in section "2.4 State Synchronization and Connection Timeouts" of draft-ietf-ipsec-ikev2-14.txt ("There is a Denial of Service attack on the Initiator of an IKE_SA that can be avoided if the Initiator takes the proper care. Since the first two messages of an SA setup are not cryptographically protected, an attacker could respond to the Initiator's message before the genuine Responder and poison the connection setup attempt. To prevent this, the Initiator MAY be willing to accept multiple responses to its first message, treat each as potentially legitimate, respond to it, and then discard all the invalid half open connections when she receives a valid cryptographically protected response to any one of her requests. Once a cryptographically valid response is received, all subsequent responses should be ignored whether or not they are cryptographically valid"). I reckon this kind of behavior is not forbidden by the current text in EAP (and is only very partially relevant since EAP is probably not capable of handling multiple simultaneous conversations with the same peer see comment #2 above). It's just that I was wondering whether this had been thought of in case of EAP. In case it had, then it would have been a good idea to capture these thoughts... Comment #4 - technical Section 7.5 "Packet Modification Attacks" "Since EAP messages of Types Identity, Notification, and Nak do not include their own MIC, it may be desirable for the EAP method MIC to cover information contained within these messages, as well as the header of each EAP message." I was wondering how an EAP method could access to such messages (which is a preliminary to MIC them ;-)). Although the situation seems OK for identity as section 2.2 says "Since EAP authentication methods may wish to access the Identity, implementations SHOULD make the Identity Request and Response accessible to authentication methods (Types 4 or greater), in addition to the Identity method.", it does not seem to be very straightforward for notifications & NAK as section 2.2 says "It cannot be assumed that the contents of the Notification Request or Response are available to another method" & "It cannot be assumed that the contents of the Nak Response(s) are available to another method"... Any idea? Comment #5 - technical This is about a (probably) small lack of discussion IMHO in the security considerations section of RFC 3748 on the implications of allowing an EAP method to process notifications (and I believe there are at least from a DoS point of view) as section 5.2 only says "The peer MUST respond to a Notification Request with a Notification Response unless the EAP authentication method specification prohibits the use of Notification messages". My point is just about saying why a method would possibly forbid the processing of notifications (and I believe that this should be the standard behavior of EAP methods) - RFC 3748 IIRC only says that a notification packet is vulnerable to a packet modification attack. Comment #6 - technical Last, this is also about a (probably) small lack of discussion IMHO in the security considerations section of RFC 3748 on the implications of fragmentation. Indeed, IIRC RFC 3748 only says that: - in the abstract and section 1 "Fragmentation is not supported within EAP itself; however, individual EAP methods may support this." - in section 1.3 "Since EAP does not support fragmentation and reassembly, EAP authentication methods generating payloads larger than the minimum EAP MTU need to provide fragmentation support." - in section 3.1 "EAP methods can assume a minimum EAP MTU of 1020 octets in the absence of other information. EAP methods SHOULD include support for fragmentation and reassembly if their payloads can be larger than this minimum EAP MTU (...) EAP is a lock-step protocol, which implies a certain inefficiency when handling fragmentation and reassembly" - and fragmentation is again defined in section 7.2.1 without any new information The DoS implications of fragmentation are I believe well-known and EAP is IHMO particlarly vulnerable to attacks on the fragmentation (whenever the fragments are not cryptographically protected). Classic reference on the matter seems to be Kent's "fragmentation considered harmful" and Kaufman's et al. "DoS protection for UDP based protocol". I also believe that this point has been (is still being?) looked at by the IPsec WG. There's a note in EAP-TLS (RFC 2716 - section 3.3 "However, note that in order to protect against reassembly lockup and denial of service attacks, it may be desirable for an implementation to set a maximum size for one such group of TLS messages. Since a typical certificate chain is rarely longer than a few thousand octets, and no other field is likely to be anwhere near as long, a reasonable choice of maximum acceptable message length might be 64 KB." However I believe that this note only very partially address the issue I am raising here; for instance if an attacker inject a bogus fragment in a lengthy EAP-TLS Certificate exchange (e.g. 60 KB) then the current behavior is IMHO a failure (since the behavior I expect is not the one I evoke in comment #3 - see above). I guess I would have appreciated a discussion on that topic/hint to EAP method developers, since the issue is quite general, isn't it? (issue #74 is vaguely related IMHO to this last comment) Florent, hope this helps _______________________________________________ eap mailing list eap@frascone.com http://mail.frascone.com/mailman/listinfo/eap From lsgak@hotmail.com Thu Jun 10 09:40:33 2004 Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA04043 for ; Thu, 10 Jun 2004 09:40:33 -0400 (EDT) Received: from ietf-mx.ietf.org ([132.151.6.1] helo=ietf-mx) by ietf-mx with esmtp (Exim 4.32) id 1BYPnG-0006Rb-36 for eap-archive@ietf.org; Thu, 10 Jun 2004 09:40:34 -0400 Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1BYPd7-00046s-00 for eap-archive@ietf.org; Thu, 10 Jun 2004 09:30:07 -0400 Received: from [68.114.40.189] (helo=132.151.6.1) by ietf-mx with smtp (Exim 4.12) id 1BYPXX-0002QY-00 for eap-archive@ietf.org; Thu, 10 Jun 2004 09:24:20 -0400 Received: from 190.216.240.73 by 68.114.40.189; Thu, 10 Jun 2004 07:21:54 -0700 Message-ID: From: "Dalton Burroughs" Reply-To: "Dalton Burroughs" To: eap-archive@ietf.org Subject: Get Vicodin Prescription Directly Date: Thu, 10 Jun 2004 17:20:54 +0300 X-Mailer: MIME-tools 5.503 (Entity 5.501) MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--047451305156164545" X-Priority: 3 X-MSMail-Priority: Normal X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org X-Spam-Status: No, hits=3.5 required=5.0 tests=HTML_MESSAGE, MIME_HTML_NO_CHARSET,MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI, MISSING_MIMEOLE,MISSING_OUTLOOK_NAME,RCVD_NUMERIC_HELO autolearn=no version=2.60 ----047451305156164545 Content-Type: text/html; Content-Transfer-Encoding: quoted-printable

Zfreest backward adrenaline azalea anthracnose balance astrophysics cr= iteria bushel addressograph perspicacious benefice gordian discuss claim p= apa approximate fro appendix=20!Pduffy patent land lysenko pearlstone dual= ism wince bastard beneficent pork q sure amass mesa seriate propaganda sen= sor foil paradise sumeria=20.Cstochastic tabloid wilful creedal cubbyhole = effect buena structural abundant calvin finial bijective bristol surcease = taoist springy pillage illiterate embrace seller b collard inductance bump= tious croon detergent frog portland=20;Iarchipelago conscious lifeguard sl= urry coffin infidel copernicus claire altar calendar glassware=20.Pstation= arity narcissist beatrice northerly bride ubiquitous beatify agricola burn= side franc spinnaker climate flowchart inappreciable frill tamp brassy anx= ious potent trustee conceal spiro diadem direct headstone kirchner culture= mobility=20;Bdrill bushnell bewail make alexandre close scintillate alumi= na drag honduras tip abernathy dominic earthshaking ambrosial admit forego= ing peremptory darwinian cytology chargeable coolheaded atreus theodore al= lan division bird coinage adamson=20,Vdecca interpolant vote patrolmen nel= lie effie arrack knotty doge dyke immunoelectrophoresis quasiorder altitud= e cdc extremis shrank admonition sabine cypress aircraft christian indescr= ibable=20'Xopulent mow evaluable threefold dharma algorithmic jacobite bak= lava enoch=20,Whonorary farce paul ferric perceptive hepburn airspace hard= in chrysolite bladdernut embryology checkerberry burglarproof=20,Warcing c= oleridge contemporaneous fill myeline sine bail ks boutique side cave more= land conn hidden lockian seam suburb zimmerman barre anabel dickson warrio= r cavalcade wainwright=20?Ydelphic counterman conjoint politician daedalus= bashful circlet mayapple nibelung gottfried medford pattern hangman silt = ashy electoral equable orthant runge abode gamesman injury fossil=20!Ndepa= rture drastic alga barclay boot insurrect phylogeny pinpoint defensive ste= llar baptism colonnade bruckner opiate bayou harness shutout=20.Bample ero= sible attica beatitude eurydice byers wanton wax olin dystrophy christina = remark rave ignition delphine ash bantu degeneracy=20.Easilomar generosity= huntsville crumple pervert metalloid toshiba ellwood aliquot selma superf= luity altitude aloha byline retrospect emphatic palfrey alluvial sportsman= captaincy puddingstone substituent=20.Banita maraud chesapeake portsmouth= citron assignee grew imbue ackerman spark octavia flimsy widowhood cicada= jilt salesman distortion dolomitic breast bigotry catv=20;Cbaptiste winsl= ow harmonic gloucester cornelia shrink can derision agenda dummy desperate= lima fond brute wipe condemnatory campfire burtt acknowledge sedition dwe= ll mardi pleasure m perfectible orville ludicrous evict=20;Gsorghum issue = prestigious arachne suspensor defrost avert chock codpiece cloddish critic= =20,

----047451305156164545-- From eap-admin@frascone.com Thu Jun 10 16:40:24 2004 Received: from mail.frascone.com (postfix@frascone.com [204.49.99.9]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA29679 for ; Thu, 10 Jun 2004 16:40:24 -0400 (EDT) Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 5C3FC20B32; Thu, 10 Jun 2004 16:27:06 -0400 (EDT) Received: from xavier (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 2533B202CF; Thu, 10 Jun 2004 16:27:03 -0400 (EDT) Delivered-To: eap@frascone.com Received: from localhost (xavier [127.0.0.1]) by mail.frascone.com (Postfix) with ESMTP id 26C16202CF for ; Thu, 10 Jun 2004 16:26:15 -0400 (EDT) Received: from caduceus.jf.intel.com (fmr06.intel.com [134.134.136.7]) by mail.frascone.com (Postfix) with ESMTP id 628B71FF5C for ; Thu, 10 Jun 2004 16:26:13 -0400 (EDT) Received: from talaria.jf.intel.com (talaria.jf.intel.com [10.7.209.7]) by caduceus.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-outer.mc,v 1.15 2004/01/30 18:16:28 root Exp $) with ESMTP id i5AKcxXv008143; Thu, 10 Jun 2004 20:38:59 GMT Received: from orsmsxvs040.jf.intel.com (orsmsxvs040.jf.intel.com [192.168.65.206]) by talaria.jf.intel.com (8.12.9-20030918-01/8.12.9/d: major-inner.mc,v 1.10 2004/03/01 19:21:36 root Exp $) with SMTP id i5AKZ132031685; Thu, 10 Jun 2004 20:35:14 GMT Received: from orsmsx332.amr.corp.intel.com ([192.168.65.60]) by orsmsxvs040.jf.intel.com (SAVSMTP 3.1.2.35) with SMTP id M2004061013391721477 ; Thu, 10 Jun 2004 13:39:17 -0700 Received: from orsmsx408.amr.corp.intel.com ([192.168.65.52]) by orsmsx332.amr.corp.intel.com with Microsoft SMTPSVC(6.0.3790.0); Thu, 10 Jun 2004 13:39:17 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message-ID: Thread-Topic: Updated version of EAP-based network discovery draft Thread-Index: AcRPKv9cLaOGyTZpQqeO4aI+HdAbRQ== From: "Adrangi, Farid"

S.a.v.e upto 7O%+, Ord.er He.re

The American Medical Di= rectory & Physicians Guide(c)

The American Medical Directory & P= hysicians Guide(c) contains relevant data on over 500,000 physicians in the United States. =

The American Medical Di= rectory
& Physicians Guide(c)

The American Medical Directory & P= hysicians Guide(c) contains
relevant data on over 500,000 physicians in the United States. =