On Tue, Apr 14, 2015 at 10:33 AM, Paul Hoffman wrote:
> DNS is an application that runs on a single port between two hosts. In that
> environment, TLS is always a much more appropriate protection mechanism than
> IPsec for the numerous reasons PaulW gave.
>
> We don't need to document this decis
Or… include the first sentence (with a slight editorial change) in the
document.
manning
bmann...@karoshi.com
PO Box 12317
Marina del Rey, CA 90295
310.322.8102
On 14April2015Tuesday, at 7:33, Paul Hoffman wrote:
> DNS is an application that runs on a single port between two hosts. In tha
DNS is an application that runs on a single port between two hosts. In that
environment, TLS is always a much more appropriate protection mechanism than
IPsec for the numerous reasons PaulW gave.
We don't need to document this decision any more than we need to document every
application's choic
On Mon, 13 Apr 2015, Daniel Migault wrote:
Just for information, what are the technical reasons IPsec has not
been considered at all for providing DNS
privacy.
People can already use an IPsec VPN and a remote DNS server without
anything new from IETF?
I do
Hi Paul,
Thanks for the response. I am just initiating a new tread to avoid mixing
conversations.
On Mon, Apr 13, 2015 at 5:44 PM, Paul Wouters wrote:
> On Mon, 13 Apr 2015, Daniel Migault wrote:
>
> Just for information, what are the technical reasons IPsec has not been
>> considered at all