On Dec 20, 2011, at 6:00 PM, Danny McPherson wrote:
I'm kinda surprised the security ADs are OK with this in a brand new
connection-oriented protocol meant to increase security of the network:
S.7:
Caches and routers MUST implement unprotected transport
over TCP using a port,
On Dec 20, 2011, at 8:17 PM, Warren Kumari wrote:
Unfortunately not all OSs support TCP-AO…. Well then, it seems that, as
routers already support SSH it should be simple to wrap a TCP stream, yes?
Unfortunately no -- not all implementations have a simple library type model.
Same things