[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Wes Hardaker: opportunistic encryption deployment problems

To: Bill Manning <bmanning@ISI.EDU>
Subject: Re: Wes Hardaker: opportunistic encryption deployment problems
From: Henry Spencer <henry@spsystems.net>
Date: Tue, 7 Aug 2001 16:12:28 -0400 (EDT)
cc: Hugh Daniel <hugh@road.xisp.net>, ipsec@lists.tislabs.com, FreeS/WAN Design Issues <design@lists.freeswan.org>
In-Reply-To: <200108071425.f77EPrl19554@zed.isi.edu>
Sender: owner-ipsec@lists.tislabs.com

On Tue, 7 Aug 2001, Bill Manning wrote:
> 	One point.   Instead of TXT records for stuffing bits into, there is 
> the CERT record which was designed for just such stuff.

Well, for small values of "designed". :-)  CERT itself is fine; the problem
is that the stuff inside it is X.509, which we have been resisting getting
involved with.

We chose TXT because we simply wanted to convey a gateway address and a
key, and we wanted to parse it with 10 lines of code, not 10,000. 

                                                          Henry Spencer
                                                       henry@spsystems.net

Follow-Ups:

Re: Wes Hardaker: opportunistic encryption deployment problems

From: Bill Manning <bmanning@ISI.EDU>

References:

Re: Wes Hardaker: opportunistic encryption deployment problems

From: Bill Manning <bmanning@ISI.EDU>

Prev by Date: RE: Wes Hardaker: opportunistic encryption deployment problems
Next by Date: Re: Wes Hardaker: opportunistic encryption deployment problems
Prev by thread: Re: [Design] Re: Wes Hardaker: opportunistic encryption deployment problems
Next by thread: Re: Wes Hardaker: opportunistic encryption deployment problems
Index(es):
- Main
- Thread