On Mon, Aug 18, 2008 at 06:11:14PM -0400, Paul Wouters wrote:
> >It is possible to host >100000 connections on 1 IP address and 1 port, and
> >this happens in practice. Think, again, of webservers, which all have to
> >listen on port 80, yet support lots of clients simultaneously.
>
> Bad example. One of the reasons we don't see more crypto per default on
> web browsing is precisely the limitations of SSL/CA's on using SSL with
> virtual host web sites. I'd hardly call the lack of port 443 a success
> story.
I must be more stupid than normal - care to elaborate how limitations (I
wasn't aware of, btw) on virtual webhosting authenticated and encrypted
using SSL certificates have any bearing on the suitability of TCP/IP for DNS
levels of performance?
Bert
--
http://www.PowerDNS.com Open source, database driven DNS Software
http://netherlabs.nl Open and Closed source services
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
