North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: shim6 (was Re: IPv6 news)
Christopher, On Oct 14, 2005, at 9:32 PM, Christopher L. Morrow wrote: I believe relying on the address as any sort of authentication is a mistake. Given IPv6 was, at least in theory, supposed to require IPSEC, I would have thought the use of the source address for anything other than connection demultiplexing would have been a waste of time.You know, if you describe it that way too many times, people who areyou know... shim6 could make 'source address' pointless, you COULD just do Of course, that assumes that people actually implement "required" parts of protocol specifications. As has been seen countless times, what happens in practice doesn't seem to conform to what is required in theory. Do all IPv6 stacks implement IPSEC? Rgds, -drc
|