Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH

Gorsic, Bonnie L wrote:

It seems that policy should be scenario / use case / mission dependent,
and consequently apply to a number of applications. (And thus be
application independent).

it's normal for policy to be different from one application to another. 
some applications are permitted by policy, others are forbidden, others
are permitted with restrictions. 

also, it is difficult to generalize policy specification to the point
that it can be independent of all applications, because sometimes there
is a subtle interaction between policy and the application.  for
example, many sites have mail filtering policies that hinge on
subtleties of SMTP protocol responses and DNS query results.  it doesn't
make sense to try to specify those in an application-independent fashion.

that said, a coarse specification of policy that could be applied to
some applications would still be useful.

Keith


_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

Re: [DNSOP] Re: Last Call: draft-ietf-dnsop-reflectors-are-evil (Preventing Use of Recursive Nameservers in Reflector Attacks) to BCP, Sam Hartman

Next by Date:

Re: Draft ION about our rules in practice, Sam Hartman

Previous by Thread:

RE: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo()and searching), Gorsic, Bonnie L

Next by Thread:

Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo() and searching), Nicolas Williams

Indexes:

[Date] [Thread] [Top] [All Lists]

Re: AI_SECURE_CANONNAME, AI_CANONNAME_SEARCH_* (Re: getaddrinfo()and searching)