In message
<200002112224(_dot_)e1BMO5917310(_at_)black-ice(_dot_)cc(_dot_)vt(_dot_)edu>,
Valdis(_dot_)Kletnieks(_at_)vt
.edu writes:
Does anybody have statistics on how effective RFC2350 (Expectations
for Computer Security Incident Response) was? Or RFC2502 (Anti-Spam
Recommendations for SMTP MTAs)? Or RFC2644 ( Changing the Default for
Directed Broadcasts in Routers)? It would seem reasonable that moving
2267 to BCP should have a similar effectiveness...
Well.... 2267 is addressed more towards ISPs, and while there are certainly
clueless ISPs out there, I suspect that on the average they're more clueful
about the net than the typical end site. (Obviously, there are exceptions in
both categories; I did say *average*.)
--Steve Bellovin