[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: low-overhead encrypted telnet

To: [email protected]
Subject: Re: low-overhead encrypted telnet
From: "Perry E. Metzger" <[email protected]>
Date: Wed, 02 Mar 1994 11:54:51 -0500
Cc: [email protected], [email protected] (Eric Hughes), [email protected]
In-Reply-To: Your message of "Wed, 02 Mar 1994 11:43:18 EST." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]


[email protected] says:
> 	 Although running an encrypted IP stack does require sysadmin
> 	 cooperation, it does not require a kernel rebuild -- John Ioannidis
> 	 has built modloadable versions of most of the swIPe software.
> 
> Assuming, of course, that you're running a system that has modload.
> (Ironically, CERT has recommended that you delete loadable device drivers
> from systems that don't need them, as a way to guard against password-
> sniffers.)

A short sighted view. You can't stop line monitoring -- you should
defend against it with encryption instead. In an environment like
mine, there are literally thousands of potential line monitoring
points that I cannot defend, but encryption gives me real security.

Perry

References:
- Re: low-overhead encrypted telnet
  - From: [email protected]

Prev by Date: Re: low-overhead encrypted telnet
Next by Date: RE: PGP on the HP 100
Prev by thread: Re: low-overhead encrypted telnet
Next by thread: Re: low-overhead encrypted telnet
Index(es):
- Date
- Thread