On Mar 9, 2012, at 1:24 PM, Ray Bellis <[email protected]> wrote: > I've been vocal in my complaints about how broken the DNS Search Path > mechanism is. In particular, I'm concerned about the possible security > implications of using a relative location when a mobile device is moving > between networks.
Very true. Ideally your homenet would have a namespace in the global DNS hierarchy that would remain the same regardless of where you connected, and your client would have TSIG credentials sufficient to update its own name in that namespace. Roving namespaces seem fraught with opportunities for the wrong thing to happen, intentionally or otherwise.
_______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
