[185835] in North American Network Operators' Group
Re: DNSSEC and ISPs faking DNS responses
daemon@ATHENA.MIT.EDU (Roland Dobbins)
Sat Nov 14 06:11:50 2015
X-Original-To: nanog@nanog.org
From: "Roland Dobbins" <rdobbins@arbor.net>
To: nanog@nanog.org
Date: Sat, 14 Nov 2015 18:11:37 +0700
In-Reply-To: <26D0C2D4-99B2-4462-8E79-B195EEEE8171@delong.com>
Errors-To: nanog-bounces@nanog.org
On 14 Nov 2015, at 16:05, Owen DeLong wrote:
> Lots of VPN services out there like the ones mentioned earlier in the
> thread have made it nearly as simple to install and operate a VPN.
Until the setup and functionality are automagic, we're not going to see
broad use of VPNs by non-specialists.
VPN functionality is built into pretty much every mainstream (and many
non-mainstream) OS out there, including mobile devices. But it isn't
something that's simple; users have to at a minimum install and accept a
VPN profile, which means they have to go looking for a service in the
first place.
I'm wondering if perhaps major OS vendors/developers may start
offering/OEMing VPN services, or at least distributing profiles in the
same way as browser vendors/developers distribute CA certs?
-----------------------------------
Roland Dobbins <rdobbins@arbor.net>
