Re: draft-ietf-opsec--infrastructure-security-00.txt

["George Jones" <eludom@gmail.com>]

I guess my main question/comment is, is whats in this draft
(draft-ietf-opsec-infrastructure-security-00.txt) actual, current
practice or is it a good set of "shoulds" ?  2267 (ingress filtering)
is a good idea, but I think it's still far from a universal practice.

On the other hand, I think draft-ietf-opsec-current-practices-07.txt
was the result of an extensive survey of *actual* *current* *practices*
of operators.   

If I had to vote between the two, I'd vote for the latter being BCP....but
both are fine docs.

One small comment on *-infrastrucure-security-00.txt, you need to add
references for all your citatoins (e.g. 2267, 3704 are cited but not listed
in the references).   xml2rfc will catch stuff like this for you.

---George Jones