On Thu, 23 Oct 2003, Joel N. Weber II wrote:
> It seems like opsec is not really the right scope to be mandating > lowest common denominator profiles for IPsec. I think we ought to be > able to just say ``IPsec'', and let the IPsec people take care of the > rest.
Thank-you. Agreed.
Right. If someone can show succes stories of quick, painless rollout of IPsec in a large multi-vendor environemnt without the need to get vendors and testing labs involved to resolve incompatabilites and point a 5 page or less "Here's how I did it, and how you can do it to" writeup" I'd be willing to be convinced.