On Sun, 2006-04-30 at 17:30 +0800, Miao Fuyou wrote: > Another problem of using DNS is: name resolution itself is not secure if > DNSSEC is not used (true im most cases). Dependency on DNS may introduce new > security vulnerable to Syslog/TLS. > > Client should use knowledge a priori to check server's certificate, such as > URL, if it is available.
Yes, you need forward DNS resolution in this case too. (e.g. hostname in URL -> IP address) -- Bazsi _______________________________________________ Syslog mailing list [email protected] https://www1.ietf.org/mailman/listinfo/syslog
