> Lee Howard <mailto:l...@asgard.org> > Tuesday, November 11, 2014 7:48 PM > Many SSH servers (by default) reject connections from IP addresses without > PTRs. > This is stupid.
(vixie indicates support of this view.) > > I heard applause during the WG meeting in response to these statements; > sounded like consensus to me. I said I would check that consensus on list. i wasn't in hawaii so i'm adding my voice here, as well as this comment: ssh is wizardware, it's not like a web server whose clients will lack technical skills. almost all ssh server operators are aware that they are ssh server operators, and know how to change this configuration knob in their ssh server. almost all ssh client operators know their ssh server operators on a first name basis and can pick up the phone and explain why this configuration is stupid. so, there is no installed-base or inertia argument which would keep this kind of stupidity alive if it were happening in a non-wizardware service such as e-mail or web. -- Paul Vixie
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
