Sounds ok to me. Would that go in the security considerations section, or in the main body? If in the main body, you might want at least a reference calling it out in the security considerations.
Wes > -----Original Message----- > From: Randy Bush [mailto:[email protected]] > Sent: Thursday, January 20, 2011 2:57 AM > To: George, Wes E [NTK] > Cc: [email protected] > Subject: Re: comment on draft-ietf-sidr-origin-ops > > intereting. how about > > When using a metric which is also influenced by other local > policy, the operator should be careful not to create privilege > upgrade vulnerabilities. E.g. if Local Pref is set depending on > validity state, be careful that peer community signaling can not > upgrade an invalid announcement to valid or better. > > randy
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
