Schneier: ISPs should bear security burden

• Previous message (by thread): Schneier: ISPs should bear security burden
• Next message (by thread): Schneier: ISPs should bear security burden
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 02 May 2005 13:16:40 EDT, Joe Maimon said:

> Thats not quite what I was asking. Would you not have preferred being 
> able to do all the above simply by being able to assume that all these 
> "dialup" systems would not have any RDNS?

Not having any RDNS would help, but...

> Given a choice between ISP using unpredictable naming patterns or no 
> name for dialup ranges, what would your preference be?

I'd prefer unpredictable - because as squirrelly *that* is, it's better than
the mess we'll see when the clueless bozos decide that having an internally
visible RDNS is useful to them, and they botch deploying split views for
inside and outside.. over and over in myriad different ways.... 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20050502/b08b6a58/attachment.sig>

• Previous message (by thread): Schneier: ISPs should bear security burden
• Next message (by thread): Schneier: ISPs should bear security burden
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]