[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CERT advisory

To: [email protected]
Subject: CERT advisory
From: [email protected] (Eric Hughes)
Date: Fri, 4 Feb 94 16:55:34 -0800
In-Reply-To: Marc W. Mengel's message of Fri, 04 Feb 94 17:27:48 -0600 <[email protected]>

>The big issue, in my mind, is how the ftpd is going to get the key
>to unlock the *system's* private key... Do you compile it into the
>code?  Should ftpd ask for it when it comes up? 

Since active interception is not nearly so easy as passive listening,
it would be appropriate to use a Diffie-Hellman key exchange in this
situation.  This protocol has no persistent private keys, so the issue
of keeping a private key around securely is not an issue.

Eric

Follow-Ups:
- Re: CERT advisory
  - From: [email protected] (Robert Cain)

References:
- Re: CERT advisory
  - From: Marc W. Mengel <[email protected]>

Prev by Date: Food for thought
Next by Date: Running regularly
Prev by thread: Re: CERT advisory
Next by thread: Re: CERT advisory
Index(es):
- Date
- Thread