From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1NxRUc-0006jm-Hn for mharc-grub-devel@gnu.org; Thu, 01 Apr 2010 16:59:58 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1NxRUZ-0006hi-Un for grub-devel@gnu.org; Thu, 01 Apr 2010 16:59:56 -0400 Received: from [140.186.70.92] (port=39452 helo=eggs.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1NxRUY-0006fV-Ix for grub-devel@gnu.org; Thu, 01 Apr 2010 16:59:55 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.69) (envelope-from ) id 1NxRUX-00082z-24 for grub-devel@gnu.org; Thu, 01 Apr 2010 16:59:54 -0400 Received: from mail-fx0-f227.google.com ([209.85.220.227]:54215) by eggs.gnu.org with esmtp (Exim 4.69) (envelope-from ) id 1NxRUW-00082u-Ti for grub-devel@gnu.org; Thu, 01 Apr 2010 16:59:53 -0400 Received: by fxm27 with SMTP id 27so744826fxm.8 for ; Thu, 01 Apr 2010 13:59:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :x-enigmail-version:content-type; bh=VOtRu+QRUv9ah+DhIEP/VocPG6Aj8psQAfcrDdQCvfc=; b=iQtneJjET+fVAKR8vAwihuPc+aCThYnZPPy6aGht1OIeWtvBbewROpSDxDikwIL4zV /XlXHTZujRNDeX7tGNcHtEXEJYjglOuSPVfjWnibatgtdVKRPPs7DFmd9BLERPu5WMGe BLwgkbBNH4l0Tld9Bt/VLvoXVaArvnhV+Uzrw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:x-enigmail-version:content-type; b=VhArbnyOVueJ04bZ0N93/ApBeiVjsP0kBIg+C03j9JSntWAXw3VHFag6n1NBOVAdOV rr1OV9MwUdoHrFOW5sMTCWussiVB5HwZJ61N4KemXXogbXz1y6WPR5urNz16sTJEvfPN rY9oRPhStk4FwD8ksf0fKwmCRhIxez96SdLzk= Received: by 10.223.143.82 with SMTP id t18mr1169517fau.52.1270155591624; Thu, 01 Apr 2010 13:59:51 -0700 (PDT) Received: from debian.bg45.phnet (89-37.203-62.cust.bluewin.ch [62.203.37.89]) by mx.google.com with ESMTPS id 28sm4927698fkx.36.2010.04.01.13.59.50 (version=TLSv1/SSLv3 cipher=RC4-MD5); Thu, 01 Apr 2010 13:59:50 -0700 (PDT) Message-ID: <4BB5093F.3030402@gmail.com> Date: Thu, 01 Apr 2010 22:59:43 +0200 From: =?UTF-8?B?VmxhZGltaXIgJ8+GLWNvZGVyL3BoY29kZXInIFNlcmJpbmVua28=?= User-Agent: Mozilla-Thunderbird 2.0.0.22 (X11/20091109) MIME-Version: 1.0 To: The development of GNU GRUB References: <4BB0FB37.2060906@gmail.com> <4BB23431.3000007@gmail.com> <201003301546.30857.trustlix@linux.vnet.ibm.com> In-Reply-To: X-Enigmail-Version: 0.95.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="------------enig3DE3051BA3213EA988CD1A85" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2) Subject: GRUB and network (was Re: GRUB and Google Summer of Code) X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GNU GRUB List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Apr 2010 20:59:56 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig3DE3051BA3213EA988CD1A85 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable First of all please change subject line when topic changes Michal Suchanek wrote: >> =20 > > I would be interested in the x86 port and something like telnet and/or > VNC terminal for Grub or at least reading configuration from the > network.=20 The problem is that for this grub has to be a server. For e.g. ftp grub is a client so it needs to take any action only when it needs data. On the other hand if grub acts as a server it must be able to process the connection request at any moment. > I guess it would be possible to test and add additional > layers quite easily once one of the network cards emulated in qemu is > supported. > =20 Actually we can just add a pseudo-card which will use sufficiently low-level network interface to grub-emu > There is already some crypto imported for password support so adding > enough to have SSL would hopefully not be too difficult. > =20 Not true. Although we have ciphers and hashes we don't have either asymetric algorithms or random generator. The first is easy to import but generating random numbers involves gathering entropy which is cornerstone of network cryptography. Without a good random number generator most SSL algorithms will only make the user happier without adding any security against attacker. --=20 Regards Vladimir '=CF=86-coder/phcoder' Serbinenko --------------enig3DE3051BA3213EA988CD1A85 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iF4EAREKAAYFAku1CUUACgkQNak7dOguQgn0sAD9HjFetCz6H2h02N/x3/wQ8Iwv Crb2K/x2s/s6LM3zPMIBAIrkketNgdbc0fFc1GuM0NvoBIrRvRMBsLFIrorbRZIk =AWFh -----END PGP SIGNATURE----- --------------enig3DE3051BA3213EA988CD1A85--