On Feb 10, 2018, at 16:27, Ted Lemon <mel...@fugue.com> wrote: > Well, for example, when the DHC working group was considering the search list > option for DHCPv6, I argued that there should be no such option because > search lists are bad. My argument was rejected. Had the IETF officially > deprecated searchlists prior to that, there would be no DHCPv6 search option, > and that attack surface would not exist.
I wonder whether there's a useful difference between "deprecate" (which has connotations of banning something that is in active use and is unlikely to go away) and providing architectural guidance that IETF protocols shouldn't incorporate, encourage or rely upon search list processing. In any case, I interpret your data point as agreement with my second paragraph :-) Joe _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
