[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Only 5x IPv4 /8 remaining at IANA

Subject: Only 5x IPv4 /8 remaining at IANA
From: bygg at cafax.se (Johnny Eriksson)
Date: Mon, 18 Oct 2010 20:26:20 WET DST
In-reply-to: Your message of Mon, 18 Oct 2010 09:47:29 -0700

"Tony Hain" <alh-ietf at tndh.net> wrote:

> Actually nat does something for security, it decimates it. Any 'real'
> security system (physical, technology, ...) includes some form of audit
> trail. NAT explicitly breaks any form of audit trail, unless you are the one
> operating the header mangling device. Given that there is no limit to the
> number of nat devices along a path, there can be no limit to the number of
> people operating them. This means there is no audit trail, and therefore NO
> SECURITY. 

So an audit trail implies security?  I don't agree.  It may make post-mortem
analysis easier, thou.

Does end-to-end crypto break security?  Which security?  The security of
the endpoints or the security of someone else who cannot now audit the
communication in question fully?

> Tony

--Johnny

Follow-Ups:
- Only 5x IPv4 /8 remaining at IANA
  - From: owen at delong.com (Owen DeLong)

Prev by Date: Definitive Guide to IPv6 adoption - Sparse IPv6 allocation
Next by Date: Only 5x IPv4 /8 remaining at IANA
Previous by thread: Only 5x IPv4 /8 remaining at IANA
Next by thread: Only 5x IPv4 /8 remaining at IANA
Index(es):
- Date
- Thread