On 10/26/2012 09:46 AM, RJ Atkinson wrote:
On 26 Oct 2012, at 12:24 , Stephen Farrell wrote:
My understanding is that 3118 is fictional,
i.e. is never deployed, ever. As an AD, I generally
push back on any draft where the security considerations
say "use 3118 and you'll be fine."
If I'm wrong, I'd be interested in knowing that
and about when/where 3118 is being used.
I've been told about deployments within certain
governmental networks in more than one country.
So my understanding is that it is not "fictional".
I think the larger question is whether "just use secure-X" is a fiction within
a homenet environment. Given that "secure-X" is often a fiction within
networks with nominal clue, I think we should be skeptical of just about
anything that requires any clue at all. DNSSec, for example: what does
that even mean in the face of zero clue?
Mike
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet
