Date: Tue, 12 Oct 1999 23:06:12 +0200 From: "Michael Hallgren" <m.hallgren@free.fr> To: "Kris Kennaway" <kris@hub.freebsd.org> Cc: "Donald Wilde" <dwilde1@thuntek.net>, <freebsd-security@freebsd.org> Subject: Re: MD5 systems interacting with DES systems Message-ID: <002601bf14f5$9e2178c0$5b014b0a@asf.fr> References: <Pine.BSF.4.10.9910121359270.14206-100000@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Tue, 12 Oct 1999, Michael Hallgren wrote: > > > > I don't think this is correct. rlogin and friends do no encryption or > > > password authentication themselves, and aren't linked against libcrypt at > > > all. So there should be no difference whether or not you have DES > > > installed. > > > > Berkeley r* authenticates over source address, if I'm not seriously > > mistaken... > > Note I said password authentication ;-) Ok. Sorry, read quickly. However, passwords in cleartext over the bcast media... > > > > As for encrypted transport, which it sounds like you were talking about, > > > you want either ssh (if the license restrictions are applicable to you - > > > or you could port the "last truly free" version which the openbsd guys > > > have been cleaning up in their tree), > > > > Yes, nice. SSH's a VERY good replacement for r* 'and a host of other needs). > > The license terms can be a bitch, though :-( Yeah... ... > > > Anyone been trying out FreeS/WAN ? > > Not sure why you'd bother - KAME is the future for FreeBSD. Well, *BSD and the different bundles running over Linux are all my friends... :) mh > > Kris > > ---- > XOR for AES -- join the campaign! > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002601bf14f5$9e2178c0$5b014b0a>