On Mon, Nov 25, 2002 at 07:42:31PM -0500, Steven M. Bellovin wrote: > > Personally, I'd rather use real security protocols. But I'd much > prefer my scheme to site-locals...
It depends to what extent we want to keep totally open "plug and play" for those who want to use it (for routing, or for DNS discovery). Is the "well-known site-local" DNS discovery draft still alive in the context of the GUPI proposals? The work on securing neighbour discovery is new (the SEND WG), but potentially promising. In Atlanta, it was interesting to see again some of the bizarre things that do get advertised in a large IPv6 gathering, e.g. on the last day it looked like someone was running 6to4 off the IPv4 stateless autoconf address space. Tim -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
