Re: Evaluation: draft-ietf-ipsec-ciph-aes-cbc - The AES Cipher A lgorithms and Their Use With IPsec to Proposed Standard

["Steven M. Bellovin" <smb@research.att.com>]

In message <7D5D48D2CAA3D84C813F5B154F43B155016A30A2@nl0006exch001u.nl.lucent.c
om>, "Wijnen, Bert (Bert)" writes:
>>                     Yes    No-Objection  Discuss *  Abstain  
>> Bert Wijnen         [   ]     [   ]       [ X ]      [   ]
>
>Our ID-nits page at http://www.ietf.org/ID-nits.html says:
>
> o Addresses used in examples should prefer use of fully 
>   qualified domain names to literal IP addresses, and prefer
>   use of example fqdn's such as foo.example.com to real-world
>   fqdn's. See RFC 2606 for example domain names that can be used.
>   There is also a range of IP addresses set aside for this purpose.
>   These are 192.0.2.0/24 (see RFC 3330). Private addressess that
>   would be used in the real world should be avoided in examples. 
>
>So to me that means that the IP addressses used on pages 7-8-9 are
>not acceptable.

They need to be IP addresses, since they're showing IP packets.  They 
certainly can be changed to the example range, though.

		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com (2nd edition of "Firewalls" book)