[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: R41 in draft-ietf-v6ops-cpe-simple-security-07

To: Iljitsch van Beijnum <iljitsch@muada.com>
Subject: Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
From: Rémi Denis-Courmont <remi@remlab.net>
Date: Wed, 29 Jul 2009 12:11:13 +0200
Cc: james woodyatt <jhw@apple.com>, IPv6 Operations <v6ops@ops.ietf.org>
In-reply-to: <D522EC2E-62F4-49D5-B290-FC1FA53EFE7D@muada.com>
Organization: Remlab.net
References: <20090727184501.933F83A6CE4@core3.amsl.com> <029CBD08-5A79-44C2-8490-E63AF783E3B7@muada.com> <7F9A6D26EB51614FBF9F81C0DA4CFEC80133E557C9BA@il-ex01.ad.checkpoint.com> <200907282136.55466.remi@remlab.net> <35FFC80F-07B3-4CE3-BF7A-453D6A64641B@apple.com> <D522EC2E-62F4-49D5-B290-FC1FA53EFE7D@muada.com>
User-agent: RoundCube Webmail/0.1

On Wed, 29 Jul 2009 11:21:11 +0200, Iljitsch van Beijnum

<iljitsch@muada.com> wrote:

> On 29 jul 2009, at 10:22, james woodyatt wrote:

> 

>> As long as the current treatment of IPsec AH, ESP and IKE remains in

>> the draft as is, I have no objection as an individual contributor to

>> removing recommendation R41.

> 

> I do. Using IPsec may be a viable solution for a vendor who controls

> both ends of the connection, but if I simply want to run a web server

> in my home or be able to ssh into my systems that's not a very good

> solution. A solution that allows applications to receive incoming

> sessions in some automated way is much better.



So do I. IPsec is viable for operating system vendors, but is entirely

useless for third party application vendors, for lack of any de-facto

standard API. Or then, we end up with everything over UDP *again*.



-- 

Rémi Denis-Courmont

References:
- I-D Action:draft-ietf-v6ops-cpe-simple-security-07.txt
  - From: Internet-Drafts@ietf.org
- Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- RE: R41 in draft-ietf-v6ops-cpe-simple-security-07
  - From: Yaron Sheffer <yaronf@checkpoint.com>
- Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
  - From: "Rémi Denis-Courmont" <remi@remlab.net>
- Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
  - From: james woodyatt <jhw@apple.com>
- Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

Prev by Date: Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
Next by Date: Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
Previous by thread: Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
Next by thread: Re: R41 in draft-ietf-v6ops-cpe-simple-security-07
Index(es):
- Date
- Thread