From: Christopher Fowler <cfowler@outpostsentinel.com>
To: linux-ppp@vger.kernel.org
Subject: Re: Blowfish encryption
Date: Thu, 10 Mar 2005 18:01:45 +0000 [thread overview]
Message-ID: <1110477705.18073.436.camel@linux.linxdev.com> (raw)
In-Reply-To: <1110403872.18073.330.camel@linux.linxdev.com>
The only problem with ssh is that it is one protocol. There are many
protocols that travel across the ppp link. Some fo them not encryted
and can not be encrypted.
I stopped using telnet a long time ago. Also with these devices there
are protocols that are routed across that link we have no control over
so doing encryption inside of ppp would cover all the bases.
On Thu, 2005-03-10 at 12:53, Bill Unruh wrote:
> On Wed, 9 Mar 2005, Christopher Fowler wrote:
>
> > Hello,
> >
> > I've been thinking about encryption in pppd. By reading my emails
> > you've probably have an idea of what we do with pppd. Since I don't use
> Bad idea. There is already a well accepted throughly tested way of doing
> this. It is called ssh. Use it.
> Trying to overload ppp is not the way to do it ( and yes I know it is
> done).
>
> Note that tapping a modem comjunication is hard at the best of times due to
> cross training refections etc.
>
> > pppd to attach a windows desktop to a Linux server I was thinking about
> > maybe an implementation of Blowfish type encryption between two pppd
> > processes. There could be a command line argument that runs on
> > encryption and the two processes could determine in the LCP phase that
> > they are to encrypt all data between them. This is mainly for those
> > individuals who think that the phone company will tap their line and see
> > their data. Not very useful in tunnels since programs like vtun do the
> > encryption for pppd.
> >
> > Is this something that might be feasible? I'm not looking to add
> > certificate based encryption like SSL but encryption like SSH, Vtun and
> > others. Would a windows connection croak if it dialed into my box and
> > my box wanted to use encryption? Would the windows ppp process be smart
> > enough to reject that request? Has anything like this been tried yet?
> >
>
> Use ssh.
> > Thanks,
> > Chris
> >
> >
> > -
> > To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
> > the body of a message to majordomo@vger.kernel.org
> > More majordomo info at http://vger.kernel.org/majordomo-info.html
> >
next prev parent reply other threads:[~2005-03-10 18:01 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-03-09 21:31 Blowfish encryption Christopher Fowler
2005-03-10 12:36 ` James Carlson
2005-03-10 17:53 ` Bill Unruh
2005-03-10 18:01 ` Christopher Fowler [this message]
2005-03-10 18:17 ` James Carlson
2005-03-10 18:24 ` Christopher Fowler
2005-03-10 19:00 ` James Carlson
2005-03-10 19:10 ` Christopher Fowler
2005-03-10 19:13 ` James Carlson
2005-03-10 19:13 ` Bill Unruh
2005-03-10 19:17 ` Bill Unruh
2005-03-10 19:43 ` John Hasler
2005-03-10 19:59 ` James Carlson
2005-03-10 20:06 ` Christopher Fowler
2005-03-11 10:50 ` Bill Unruh
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1110477705.18073.436.camel@linux.linxdev.com \
--to=cfowler@outpostsentinel.com \
--cc=linux-ppp@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).