On Mon, Aug 18, 2008 at 06:11:14PM -0400, Paul Wouters wrote: > >It is possible to host >100000 connections on 1 IP address and 1 port, and > >this happens in practice. Think, again, of webservers, which all have to > >listen on port 80, yet support lots of clients simultaneously. > > Bad example. One of the reasons we don't see more crypto per default on > web browsing is precisely the limitations of SSL/CA's on using SSL with > virtual host web sites. I'd hardly call the lack of port 443 a success > story.
I must be more stupid than normal - care to elaborate how limitations (I wasn't aware of, btw) on virtual webhosting authenticated and encrypted using SSL certificates have any bearing on the suitability of TCP/IP for DNS levels of performance? Bert -- http://www.PowerDNS.com Open source, database driven DNS Software http://netherlabs.nl Open and Closed source services _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop