[anonsec] Connection latching by default?
Nicolas Williams <Nicolas.Williams@sun.com> Thu, 10 January 2008 23:56 UTC
Return-path: <anonsec-bounces@postel.org>
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1JD7GV-0007H3-Jb for btns-archive-waDah9Oh@lists.ietf.org; Thu, 10 Jan 2008 18:56:51 -0500
Received: from boreas.isi.edu ([128.9.160.161]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1JD7GU-0001k8-8N for btns-archive-waDah9Oh@lists.ietf.org; Thu, 10 Jan 2008 18:56:51 -0500
Received: from boreas.isi.edu (localhost [127.0.0.1]) by boreas.isi.edu (8.13.8/8.13.8) with ESMTP id m0ANjVVf006353; Thu, 10 Jan 2008 15:45:31 -0800 (PST)
Received: from sca-ea-mail-3.sun.com (sca-ea-mail-3.Sun.COM [192.18.43.21]) by boreas.isi.edu (8.13.8/8.13.8) with ESMTP id m0ANj7SB005975 for <anonsec@postel.org>; Thu, 10 Jan 2008 15:45:08 -0800 (PST)
Received: from dm-central-02.central.sun.com ([129.147.62.5]) by sca-ea-mail-3.sun.com (8.13.6+Sun/8.12.9) with ESMTP id m0ANj71f006930 for <anonsec@postel.org>; Thu, 10 Jan 2008 23:45:07 GMT
Received: from binky.Central.Sun.COM (binky.Central.Sun.COM [129.153.128.104]) by dm-central-02.central.sun.com (8.13.8+Sun/8.13.8/ENSMAIL, v2.2) with ESMTP id m0ANj6gB049681 for <anonsec@postel.org>; Thu, 10 Jan 2008 16:45:06 -0700 (MST)
Received: from binky.Central.Sun.COM (localhost [127.0.0.1]) by binky.Central.Sun.COM (8.14.1+Sun/8.14.1) with ESMTP id m0ANj6QD002202; Thu, 10 Jan 2008 17:45:06 -0600 (CST)
Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.14.1+Sun/8.14.1/Submit) id m0ANj6QI002201; Thu, 10 Jan 2008 17:45:06 -0600 (CST)
X-Authentication-Warning: binky.Central.Sun.COM: nw141292 set sender to Nicolas.Williams@sun.com using -f
Date: Thu, 10 Jan 2008 17:45:05 -0600
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: Black_David@emc.com, anonsec@postel.org
Message-ID: <20080110234505.GG810@Sun.COM>
Mail-Followup-To: Black_David@emc.com, anonsec@postel.org
Mime-Version: 1.0
Content-Disposition: inline
User-Agent: Mutt/1.5.7i
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: nicolas.williams@sun.com
Subject: [anonsec] Connection latching by default?
X-BeenThere: anonsec@postel.org
X-Mailman-Version: 2.1.6
Precedence: list
List-Id: "Discussions of anonymous Internet security." <anonsec.postel.org>
List-Unsubscribe: <http://mailman.postel.org/mailman/listinfo/anonsec>, <mailto:anonsec-request@postel.org?subject=unsubscribe>
List-Archive: <http://mailman.postel.org/pipermail/anonsec>
List-Post: <mailto:anonsec@postel.org>
List-Help: <mailto:anonsec-request@postel.org?subject=help>
List-Subscribe: <http://mailman.postel.org/mailman/listinfo/anonsec>, <mailto:anonsec-request@postel.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: anonsec-bounces@postel.org
Errors-To: anonsec-bounces@postel.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: d6b246023072368de71562c0ab503126
Solaris creates connection latches for all connected sockets by default,
whether the application requested it or not.
The just-submitted draft-ietf-btns-connection-latching-05.txt says:
Implementations MAY create IPsec channels
automatically by default when the application does not request an
IPsec channel.
But I see no reason not to make that a SHOULD. Dan thinks it should be
a SHOULD.
Others, however, may disagree.
Comments?
Nico
--
_______________________________________________
- [anonsec] Connection latching by default? Nicolas Williams
- Re: [anonsec] Connection latching by default? Sam Hartman
- Re: [anonsec] Connection latching by default? Nicolas Williams
- Re: [anonsec] Connection latching by default? Sam Hartman
- Re: [anonsec] Connection latching by default? Nicolas Williams