Reviewer: Nancy Cam-Winget Review result: Has Nits I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document defines 3 YANG 1.1 modules support configuration of TCP clients and TCP servers. These three modules encompass the (1) common configurations, (2) a grouping methodology to enable Modification of application specific parameters for TCP connections And (3) configurations specific to clients for traversing proxies. The document reads well and I have found no issues but have One nit: Section 3.1.1 speaks to features such as "socks5-username-password" and "socks5-gss-api" which have both security and privacy implications. While there is general mention in the Security Considerations (Section 5), That care must be taken; given that these parameters are used as examples in Section 3, it would be note highlighting that care in particular to these parameters must be properly protected to ensure both confidentiality and integrity. -- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
