Section 2.1.2 is far too permissive for my tastes. We need to be able to say that ULA+IPv6 NAT is NOT RECOMMENDED by the IETF.
Section 2.6.1.5 could punch up the SAVI stuff a bit more as well. We should, in my opinion, make it painfully clear that DHCP (of any protocol) in the absence of link-layer security/auditability features does not provide any satisfactory way "to ensure audibility and traceability" [Section 2.1.6]. _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
