IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: WG chair nits on draft-ietf-secsh-dns-02.txt



<wg chair hat off>

> > An alternate approach which I think is superior is to ensure that the
> > DNS search path used while resolving SSHFP records comes from a
> > trusted source (i.e., not from DHCP or PPP/ipcp).
> 
> or one could just acknowledge that DNS search paths are evil.

I think it's unreasonable from a usability standpoint to require that
users always type FQDN's rather than shorter name forms..

					- Bill



Home | Main Index | Thread Index | Old Index