> The IETF should absolutely try to make privacy/security a > _possibility_, and that's why every effort should offer the > _possibility_ of mitigation. That's as far as we should go. how many documents say if you want priavcy use ipsec. that's been a real winner for us, eh? i always leave open the possibility that cash may fall from the sky. that we did not design the internet as a *far* more secure place is a major embarrassment. clean it up. randy