2008/525 ikeadm token login
James Carlson
james.d.carlson at sun.com
Fri Aug 15 11:02:55 PDT 2008
Dan McDonald writes:
> The frequency of new-key generation (typically measured in once-per-N-years,
> for 1 <= N <= 4) is such that the above paragraph will not apply often.
> Maybe that's why you're worried --> it's so infrequent that people will not
> think to look at the release notes.
More likely, they're going to go looking for a blog entry with a
"recipe" in it.
> I guess the big question for patch-binding is whether or not customers are
> going to be banging down our door for this added security. Perhaps a ping to
> some sun-internal customer-contacting aliases (you know the ones I mean)
> would be in order?
That wouldn't be a bad idea.
I suppose that if the number of folks who've set a pin at all is
vanishingly small, and thus the number who'd retain any memory of how
it once functioned is also low, then changing how it functions by
default is no great problem.
--
James Carlson, Solaris Networking <james.d.carlson at sun.com>
Sun Microsystems / 35 Network Drive 71.232W Vox +1 781 442 2084
MS UBUR02-212 / Burlington MA 01803-2757 42.496N Fax +1 781 442 1677
More information about the opensolaris-arc
mailing list