From owner-freebsd-security@FreeBSD.ORG  Thu Mar 10 18:20:26 2011
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 02F11106566B
	for <freebsd-security@freebsd.org>;
	Thu, 10 Mar 2011 18:20:26 +0000 (UTC)
	(envelope-from remko@elvandar.org)
Received: from mailgate.jr-hosting.nl (mailgate.jr-hosting.nl
	[IPv6:2a01:4f8:63:1281::3])
	by mx1.freebsd.org (Postfix) with ESMTP id 914A88FC0C
	for <freebsd-security@freebsd.org>;
	Thu, 10 Mar 2011 18:20:25 +0000 (UTC)
Received: from [IPv6:2001:980:4a50:1:21e:c2ff:febc:d902] (unknown
	[IPv6:2001:980:4a50:1:21e:c2ff:febc:d902])
	by mailgate.jr-hosting.nl (Postfix) with ESMTPSA id C6E751CC28;
	Thu, 10 Mar 2011 19:20:23 +0100 (CET)
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: text/plain; charset=us-ascii
From: Remko Lodder <remko@elvandar.org>
In-Reply-To: <1299769253.20266.23.camel@w500.local>
Date: Thu, 10 Mar 2011 19:20:23 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <2E5C0CE8-4F70-4A4D-A91D-3274FD394C80@elvandar.org>
References: <1299682310.17149.24.camel@w500.local>
	<alpine.BSF.2.00.1103100147350.1891@qvfongpu.qngnvk.ybpny>
	<1299769253.20266.23.camel@w500.local>
To: Miguel Lopes Santos Ramos <mbox@miguel.ramos.name>
X-Mailer: Apple Mail (2.1082)
Cc: "J. Hellenthal" <jhell@DataIX.net>,
	FreeBSD Security <freebsd-security@freebsd.org>
Subject: Re: It's not possible to allow non-OPIE logins only from trusted
	networks
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2011 18:20:26 -0000

>>=20
>=20
> Yes, that's right. That would solve a whole lot of other problems too.
> It's true that I'm using SSH in many cases just as an easy to =
administer
> VPN. I've been postponing that for years. But I would need something
> that worked with FreeBSD and Gentoo (don't want to learn two tools) =
and
> for any client.



so with the pfsense project we have this thing integrated that is called =
OpenVPN.
Hell, I use it between multiple FreeBSD boxes to create a 'secure' =
(quotes because
it's as secure as possible in this world :)) network between them. I =
pushed it to my
parents who are (sigh) using Windows, I use it from my Mac (Viscosity) =
and hell
it even works on Linux/Gentoo..

And it's all.. free :-)

Cheers
Remko

--=20
/"\   Best regards,                        | remko@FreeBSD.org
\ /   Remko Lodder                      |
X    http://www.evilcoder.org/    | Quis custodiet ipsos custodes
/ \   ASCII Ribbon Campaign    | Against HTML Mail and News