David,
On Thu, August 3, 2023 8:35 am, David Lang via rsyslog wrote:
> re: DTLS, to be able to do TLS over UDP, you have to introduce sequencing
> and
> retries, at which point you are pretty much reinventing TCP.
Just FYI, "DTLS" is Datagram Transport Layer Security (RFC-9147). It is
based on (but NOT) standard TLS; DTLS is designed to handle the
out-of-order UDP Packets. You do NOT need to introduce sequencing or
retries. DTLS handles that (well, it wont retry,but it handles dropped
and reordered packets).
There are times when DTLS is the right answer. I'm not sure if (r)syslog
is the right place or not.
-derek
--
Derek Atkins 617-623-3745
de...@ihtfp.com www.ihtfp.com
Computer and Internet Security Consultant
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
