[Etherboot-developers] RFC3118 An alternative to REQUIRE_VCI_ETHERBOOT
Brought to you by:
marty_connor,
stefanhajnoczi
Menu
▾
▴
[Etherboot-developers] RFC3118 An alternative to REQUIRE_VCI_ETHERBOOT
|
From: Eric W B. <ebi...@ln...> - 2002-08-10 00:45:18
|
I was skimming through the RFC's found RFC3118 ``Authentication for DHCP Messages'' Which directly addresses the multiple DHCP server problem that etherboot has, and is a standards track protocol. Currently we do not support this, but it looks like a very good alternative to VCI_ETHERBOOT, as it is not etherboot specific. Currently two authentication methods are currently specified. Configuration Token, and Delayed Authentication. The Configuration Token authentication method is just a magic string to identify good DHCP servers, just like the VCI_ETHERBOOT variant except that it is not etherboot specific. The Delayed Authentication method gets delves into the realm of secure network and is probably best left unimplemented. There are options to require use of the authentication protocol in the ISC dhcp server but they are not currently implemented. I don't know when the code will be written but long term this definitely looks like the way to go. Eric |
