[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Enterprise Analysis DSTM Issue
On Thu, Aug 11, 2005 at 02:05:13PM +0300, Pekka Savola wrote:
>
> So, if I get this correctly, the fear is about attacks on the
> network infrastructure (routers, etc.), not on the end hosts ?
Yes, I think so.
> Because as long as you WILL have v6 connectivity through [v4-in-v6
> tunneling] on the end hosts, you will STILL have the same security
> problems? You've just shifted them around to a different place in the
> topology.
>
> But if the assumption is that an enterprise/university could run
> entirely v6-only core (routers, switches, what have you, without
> [v4-in-v6 tunneling] for their management or whatever), yes, there
> might be small differences.
>
> My assumption has always been that the network admins should be
> capable of secuiring the routers, switches, etc. properly (in any
> case, the same degree they could do so with v6), but maybe my optimism
> isn't shared everywhere..
Seems so.
As I said, I'm just relaying comments that I have heard.
--
Tim/::1