Saving Opportunistic Encryption
Eugen Leitl
eugen at leitl.org
Wed Mar 17 01:16:58 PST 2004
On Tue, Mar 16, 2004 at 03:29:42PM +0800, Sandy Harris wrote:
> >So, the apparent solution for me seems to be the approach that the SPAM
> >blacklists used - publish information in a subspace of the forward DNS
> >space instead of using the authoritative in-addr.arpa area.
> >
> Worth discussing at least.
No, anything requiring publishing DNS records won't fly. OE is
*opportunistic*. It doesn't care about what the true identity of the opposite
party is. Any shmuck on dynamic IP should be able to use it instantly, with
no observable performance degradation, using a simple patch.
If it doesn't fit these minimal requirements, it will die, just the same way
FreeS/WAN did.
-- Eugen* Leitl <a href="http://leitl.org">leitl</a>
______________________________________________________________
ICBM: 48.07078, 11.61144 http://www.leitl.org
8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
http://moleculardevices.org http://nanomachines.net
[demime 1.01d removed an attachment of type application/pgp-signature]
More information about the Testlist
mailing list