> I don't however understand fully why SSH is being ruled out. it has not yet been. for some router platforms, while they have ssh server code, the ssh code is not a library with an api. and the bgp hackers are not empowered to touch that side of the code.
> That's why I suggested "MUST implement SSH; SHOULD implement TCP-AO; > MUST prefer TCP-AO if both available" indeed, we may have to fall back to this. we still do not have for sure committments that all vendors can do this. but we're working it. folk such as russ and sean are more tuned to timing and constraints than i. my job here is just to hammer on the operational realities of delivery. but anything that folk can do to move AO from the powerpoint platform to the *BSD, Linux, and Solaris platforms will have long-term pay-off for both BGP and RPKI-Rtr. randy _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
