Hi Tom,
On 03/14/2017 11:19 AM, Miika Komu wrote:
[..]
A couple of fixes for me to edit:
* Appendix B: normative vs non-normative terminology
> [...]
so the appendix was using normative terminology which was a bit strange.
As a quick fix, I thought about moving this appendix to the body, but
after reading this extension (that was inherited as a legacy from the
earlier specification) I decided to remove it. The section basically
suggested allowing source routing via HIP relay for the sake of
compatibility with RVS servers. I think this could be exploited in a bad
way to DoS other hosts. I think it is more secure if the HIP relay only
forwards inbound packets, not outbound. If you disagree with this
change, please discuss on the list.
_______________________________________________
Hipsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/hipsec
