Re: WG chair nits on draft-ietf-secsh-dns-02.txt

To: Jakob Schlyter <jakob%crt.se@localhost>
Subject: Re: WG chair nits on draft-ietf-secsh-dns-02.txt
From: Bill Sommerfeld <sommerfeld%east.sun.com@localhost>
Date: Fri, 21 Mar 2003 00:18:54 -0500

> > An alternate approach which I think is superior is to ensure that the
> > DNS search path used while resolving SSHFP records comes from a trusted
> > source (i.e., not from DHCP or PPP/ipcp).
> 
> how can the ssh client implementation ensure that?

The ssh client can't, but a system containing an ssh client could.

Security considerations are not just for subsystem implementors;
they're also for the users..

					- Bill

Follow-Ups:
- Re: WG chair nits on draft-ietf-secsh-dns-02.txt
  - From: wes

References:
- Re: WG chair nits on draft-ietf-secsh-dns-02.txt
  - From: Jakob Schlyter

Prev by Date: Re: WG chair nits on draft-ietf-secsh-dns-02.txt
Next by Date: RE: another bounced message with chinese subject.
Previous by Thread: Re: WG chair nits on draft-ietf-secsh-dns-02.txt
Next by Thread: Re: WG chair nits on draft-ietf-secsh-dns-02.txt
Indexes:

Home | Main Index | Thread Index | Old Index