VPN question (ssh)
Justin Zygmont
jzygmont-tEQKYFGiemxAYG7eUwYNkWD2FQJk+8+b at public.gmane.org
Sun Dec 21 08:50:31 UTC 2003
> On December 20, 2003 07:00 pm, Fraser Campbell wrote:
>
> > If you care about your traffic being private at all some encryption just
> > makes sense ... encryption can be at the app layer (ssh, https, secure
> > imap, etc.), at the network layer (vpn) or at both the app and network
> > layer.
>
> Also encryption doesn't stop people from being dumb. For example allowing
> password based authentication with sshd leaves a rather weak link in the
> chain (depending on users to use good passwords), IWO if you use strong
> encryption with weak authentication you might as well not bother.
but the password is encrypted in transfer right? maybe i'm wrong about
this, but doesn't ssh use asymetric encryption initially, then symetric
after the session key is established?
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list