On Wed, Jun 21, 2006 at 07:26:54PM -0700, coderman wrote:
lead more people to simply encrypt their internet traffic. It
Ah, if it only would be "simply". Interoperability requires the same method on both ends, and session setup latency better be invisible. No such animal yet.
certainly could open up quite the business opportunity for firms providing encrypted VPN systems that basically scramble all your data so your ISP can't snoop and can't prioritize (or downgrade) the traffic.
That's precisely what I'm gearing up to do. Server-side embedding shared secret into OpenVPN, connecting to customer's own vserver. What I don't yet know (but need to find out) whether by being mediator I'm technically an ISP, or not. If I am, I've got the data retention liability albatross around my neck.
poor chumps who buy the proprietary snake oil; true security requires visibility, and alas there's not a big market for decentralized open source security/privacy infrastructure (a paying market that is).
[sometimes virtue is its own reward. and sometimes it at least gets you beers and whiskey.] -- Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
ICBM: 48.07100, 11.36820 http://www.ativel.com 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]