I have been
rather concerned that authorization based on IP address will
push them in the direction of these sorts of attacks on IP
address space, which is a place where none of us would like
to see them go.
As if this hasn't been done before.
ISPs have been authorizing mail relay based on IP for seven years now. And
k1dd13z were supposedly attacking IRC and other TCP-based networks for at
least as long. I'm not convinced there are attacks they already haven't
tried.
--
PGP key (0x0AFA039E):
<http://www.pan-am.ca/consulting(_at_)pan-am(_dot_)ca(_dot_)asc>
Sometimes it's hard to tell where the game ends and where reality bites,
er, begins. <http://vmyths.com/resource.cfm?id=50&page=1>