[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] netsync transport encryption?
From: |
Brian May |
Subject: |
Re: [Monotone-devel] netsync transport encryption? |
Date: |
Wed, 25 Oct 2006 10:36:09 +1000 |
User-agent: |
Gnus/5.110006 (No Gnus v0.6) XEmacs/21.4.19 (linux) |
>>>>> "Timothy" == Timothy Brownawell <Timothy> writes:
Timothy> IIRC part of the problem is that (many/most) ssl
Timothy> libraries supposedly tend to not get along well with
Timothy> async sockets, and then there's also the "just use vpn or
Timothy> a LD_PRELOADed encryption library" argument. So it'd
Timothy> probably be more of a pain to implement (and maintain)
Timothy> than to use external tools to provide.
There are various limitations to the work arounds suggested so far:
VPN - extra overhead and installation can be clumsy.
ssh - not everyone wants ssh - there have been serious security issues
with ssh in the past (including security holes that allow obtaining
root access). Also note that it isn't hard to "break-out" of a chroot
or damage other parts of the system even inside a chroot. Also might
be an issue also if you want to sync between windows computers.
LD_PRELOAD - does such a library exist? In any case, might be a
problem on Windows.
So I think built in encryption would be a good thing.
--
Brian May <address@hidden>
- [Monotone-devel] netsync transport encryption?, Cem Karan, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Jeronimo Pellegrini, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Timothy Brownawell, 2006/10/24
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Nathaniel Smith, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Cem Karan, 2006/10/25
- Re: [Monotone-devel] netsync transport encryption?, Richard Levitte - VMS Whacker, 2006/10/25