-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 1/13/2014 11:18 PM, Saku Ytti wrote:
> On (2014-01-13 21:33 +0000), Bjoern A. Zeeb wrote: > >>> BCP38! I am always surprised when people need crypto if they >>> fail the simple things. > Saying that BCP38 is solution to the reflection attacks is not > unlike 5 year old wishing nothing but world peace for christmas, > endearing, but it's not going to change anything. BCP38 is > completely unrealistic, many access networks are on autopilot, > many don't have HW support for BCP38, one port configured has > low-benefit, only that machine can stop attacking (but whole > world). That does *not* make it an unworthy goal, nor should it stop people from encouraging it's implementation. - - ferg (co-author of BCP38) - -- Paul Ferguson PGP Public Key ID: 0x54DC85B2 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iF4EAREIAAYFAlLVWXoACgkQKJasdVTchbIrtAD/T2bNNAgZOnnlniBPd6sEquxJ v01mmrhJxFTIDFq7EIkA/3vQbiwtEwBeVyCtc3coEkz50zSDh3j9QQjT+TQWCNVs =Al3Y -----END PGP SIGNATURE-----
