ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching)

2007-10-01 21:24:47
from [Jun-ichiro itojun Hagino] [Permanent Link] 
I've recently concluded that we need an extension to getaddrinfo() along
these lines, but I'm looking for somewhat tighter and more generic
semantics.

My proposal is to add an AI_SECURE_CANONNAME flag with the following
semantics:


    do not try to implement policy into applications.  you will end up
    forced to (?) rewrite every existing applications.
  

perhaps, but having the policy be application-independent doesn't make
sense either.


        it can be application-specific, without application modification.
        check out "systrace" by Niels Provos.

itojun

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching), Jun-ichiro itojun Hagino
Next by Date:  Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching), Keith Moore
Previous by Thread:  Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching), Keith Moore
Next by Thread:  Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching), Keith Moore
Indexes:  [Date] [Thread] [Top] [All Lists]