Hi Danny, On 12/20/2011 11:00 PM, Danny McPherson wrote:
I'm kinda surprised the security ADs are OK with this in a brand new connection-oriented protocol meant to increase security of the network:
Me too. I didn't even know I'd read that draft yet:-) When I do read it then I'll be ok with it or will not be ok with it. Neither applies yet. S
S.7: "Caches and routers MUST implement unprotected transport over TCP using a port, rpki-rtr, to be assigned, see Section 12. Operators SHOULD use procedural means, ACLs, ... to reduce the exposure to authentication issues." -danny _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf
_______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf