Date: Fri, 14 Jul 2000 15:55:58 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: Jeroen Ruigrok van der Werven <jruigrok@via-net-works.nl> Cc: Hajimu UMEMOTO <ume@FreeBSD.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/lib/libutil realhostname.c Message-ID: <Pine.NEB.3.96L.1000714155442.86948A-100000@fledge.watson.org> In-Reply-To: <20000714214518.C69824@lucifer.bart.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 14 Jul 2000, Jeroen Ruigrok van der Werven wrote: > >if two, then also the hostname at the time that the connection occurred. > >Furthermore, it would be nice if an authenticity parameter was present for > >both fields: (1) protection assuring that the IP was accurate (based on > >IPsec somehow), and (2) protection assuring the name for the IP was > >accurate (based on DNSsec). I don't see either happening soon, but we can > >and should fix the incorrect/inappropriate use of wtmp and utmp. > > DNSsec is still a problem due to the licensing if I understood Peter > Wemm correctly. Corrections on this topic are very much welcome, I will > then pursue to make sure DNSsec gets imported and enabled. The only licensing problem I know about is the dependence on RSA, which goes away soon. Is there another licensing problem I don't know about? We'd presumably prefer to use the BIND9 implementation, when available. (There's also the traditional philosophical objections to DNSsec, but I'm more concerned with legal and technical issues here) Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1000714155442.86948A-100000>