User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607
Yep, this is a problem. There needs to be an API that applications can
call to determine if ipsec is present and what level of protection is
engaged. Sorry, this stuff isn't easy.
-Jeff
Randy Bush wrote:
"A server MUST not set the AD bit unless it knows that a secure
transport is in use between it and the requesting client."
and the way the dns application tells that ipsec is established
between it and the client is ...?
randy