On Thu, 12 Oct 2000, Mark Baugher wrote: > >Realistically, anyone designing a new key-management protocol would have > >to be out of his mind to base it on ISAKMP. > > Why? Because it's grossly complex, badly designed, and poorly documented. It doesn't do enough for you to be worth the trouble. Henry Spencer henry@spsystems.net