[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Karen Seo: Thomas Narten -- clarification, etc.]

To: Thomas Narten <narten@raleigh.ibm.com>
Subject: Re: [Karen Seo: Thomas Narten -- clarification, etc.]
From: Michael Richardson <mcr@sandelman.ottawa.on.ca>
Date: Wed, 22 Apr 1998 22:07:55 -0400
CC: ipsec@tis.com
In-reply-to: Your message of "Thu, 30 Apr 1998 11:12:27 EDT." <199804301512.LAA20002@cichlid.raleigh.ibm.com>
Sender: owner-ipsec@ex.tis.com


>>>>> "Thomas" == Thomas Narten <narten@raleigh.ibm.com> writes:
    Thomas> First, let us assume that we are talking about an
    Thomas> extension header that precedes AH or ESP. Headers that
    Thomas> appear afterwards are considered data to the AH/ESP, so
    Thomas> nothing special needs to be done for them.

  ESP, yes, agreed.

  AH? I thought that all headers are processed in IPv6. Clearly, AH
is not going be a hop-by-hop option, and the end-node options are not
going to be mutable, so what you say is probably true in practice.

]     Network Security Consulting and Contract Programming      |  SSH IPsec  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |international[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |strong crypto[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [

References:

Re: [Karen Seo: Thomas Narten -- clarification, etc.]

From: Thomas Narten <narten@raleigh.ibm.com>

Prev by Date: RE: Last Call: IPSec DOI Proposed Standard
Next by Date: Re: [Karen Seo: Thomas Narten -- clarification, etc.]
Next by thread: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
Index(es):
- Main
- Thread