ipsec September 2009 archive
Main Archive Page > Month Archives  > ipsec archives
ipsec: Re: [IPsec] Issue #26: Missing treatment of error cases

Re: [IPsec] Issue #26: Missing treatment of error cases

From: Yoav Nir <ynir_at_nospam>
Date: Fri Sep 04 2009 - 19:10:19 GMT
To: David Wierbowski <wierbows@us.ibm.com>

On Sep 4, 2009, at 5:53 PM, David Wierbowski wrote:

>Yes, I will soften the language a bit, but I won't mention a DELETE payload. If some implementations do it.
>others may come to expect it. We don't want to encourage that by suggesting that it's a good idea.

Yoav, Why is it a a bad idea to include a DELETE payload in this case?

Because the IKE SA was not really created, so there is no IKE SA to delete. It's a bad idea because it is superfluous, and we don't want to risk anyone relying on this.

IPsec mailing list