low-overhead encrypted telnet
Perry E. Metzger
pmetzger at lehman.com
Wed Mar 2 08:55:09 PST 1994
smb at research.att.com says:
> Although running an encrypted IP stack does require sysadmin
> cooperation, it does not require a kernel rebuild -- John Ioannidis
> has built modloadable versions of most of the swIPe software.
>
> Assuming, of course, that you're running a system that has modload.
> (Ironically, CERT has recommended that you delete loadable device drivers
> from systems that don't need them, as a way to guard against password-
> sniffers.)
A short sighted view. You can't stop line monitoring -- you should
defend against it with encryption instead. In an environment like
mine, there are literally thousands of potential line monitoring
points that I cannot defend, but encryption gives me real security.
Perry
More information about the cypherpunks-legacy
mailing list