Re: Comments please (draft-02f)

From: Duane Wessels (wessels@ircache.net)
Date: Wed Oct 20 1999 - 14:38:04 MDT

Next message: Gary Tomlinson: "Re: Comments please (draft-02f)"
Previous message: Alex Rousskov: "Re: Comments please (draft-02f)"
In reply to: Ian Cooper: "Comments please (draft-02f)"
Next in thread: Gary Tomlinson: "Re: Comments please (draft-02f)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 20 Oct 1999, Ian Cooper wrote:

> Given the current level of traffic on the list I'm fishing for *any*
> comments you may have.

> ICP suffer from all the security problems of UDP.

suffers

>7.1.2 Hyper Text Caching Protocol (HTCP/0.0)
> Security:
> Optionally uses the MD5 shared secret authentication. Lack of
> authentication option make protocol subject to attack.

That confuses me. Do you mean:

        Optionally uses HMAC-MD5 [RFC 2104] shared secret
        authentication. Protocol is subject to attack if
        authentication is not used.

> Deployment:

HTCP is implemented in Squid, and the Web Gateway Interceptor I
believe? (http://www.vix.com/vix/wgi.html)

Duane W.

Next message: Gary Tomlinson: "Re: Comments please (draft-02f)"
Previous message: Alex Rousskov: "Re: Comments please (draft-02f)"
In reply to: Ian Cooper: "Comments please (draft-02f)"
Next in thread: Gary Tomlinson: "Re: Comments please (draft-02f)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 18 2004 - 11:21:27 MST