Tero Kivinen <kivi...@iki.fi> wrote: > What we could say in the DDoS draft is to add saying that IKEv1 > protocol is obsoleted, and will be common avenue for the DDoS attacks, > and because of that it MUST be disabled.
> Or perhaps we need the IKEv1 considered harmful draft / > ikev1-diediediediedie... Yes, I would say so. I'd even suggest that maybe it needs a CVE against products that have IKEv1 turned on by default. -- Michael Richardson <mcr+i...@sandelman.ca>, Sandelman Software Works -= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec