[80510] in North American Network Operators' Group
Re: Schneier: ISPs should bear security burden
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Mon May 2 13:35:35 2005
To: Joe Maimon <jmaimon@ttec.com>
Cc: nanog <nanog@merit.edu>
In-Reply-To: Your message of "Mon, 02 May 2005 13:16:40 EDT."
<42766078.2090603@ttec.com>
From: Valdis.Kletnieks@vt.edu
Date: Mon, 02 May 2005 13:35:01 -0400
Errors-To: owner-nanog@merit.edu
--==_Exmh_1115055301_5213P
Content-Type: text/plain; charset=us-ascii
On Mon, 02 May 2005 13:16:40 EDT, Joe Maimon said:
> Thats not quite what I was asking. Would you not have preferred being
> able to do all the above simply by being able to assume that all these
> "dialup" systems would not have any RDNS?
Not having any RDNS would help, but...
> Given a choice between ISP using unpredictable naming patterns or no
> name for dialup ranges, what would your preference be?
I'd prefer unpredictable - because as squirrelly *that* is, it's better than
the mess we'll see when the clueless bozos decide that having an internally
visible RDNS is useful to them, and they botch deploying split views for
inside and outside.. over and over in myriad different ways....
--==_Exmh_1115055301_5213P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFCdmTFcC3lWbTT17ARAorhAKCQIZMe5uGrkN+FkpbtVg+OeHmxogCgzmpc
R+ie5URdrDcptQ7yW3uc2hQ=
=O9iv
-----END PGP SIGNATURE-----
--==_Exmh_1115055301_5213P--
