Esko Dijk <[email protected]> wrote: > Maybe good to know why mDNS/DNS-SD discovery is a bad idea on the unprotected side? > Since we also do e.g. CoAP discovery on the unprotected side. (Is that > a bad idea as well?)
It's not terrible, it's just that connecting the two sides makes no (security) sense. Also, in general, I'd rather we had fewer discovery methods on the unprotected side. (I also dislike "unprotected" to describe it. This goes back decades as to whether the Internet or the LAN side of a firewall is "red"...) -- Michael Richardson <[email protected]> . o O ( IPv6 IøT consulting ) Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
