Slashdot: John Gilmore Analyzes NSA Obstruction of Crypto In IPSEC

James Knott james.knott-bJEeYj9oJeDQT0dZR+AlfA at public.gmane.org
Mon Sep 9 02:08:12 UTC 2013


William Muriithi wrote:
> But from reading around,  it looks like their biggest win was making
> sure ipsec was not part ipv6.

My understanding was that IPSec was designed to be used with IPv6, but
not required.  It was then adapted to IPv4.  Making IPSec a required
part would really cause issues with accessing public sites in the manner
we normally do.  It's also more suitable for setting up static links
than using it on an ad hoc basis to access web servers.  SSL/TLS is much
better in that regard.


--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists





More information about the Legacy mailing list