[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: manual keying and IPSEC conformance

To: Roy Pereira <rpereira@TimeStep.com>
Subject: Re: manual keying and IPSEC conformance
From: "Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>
Date: Thu, 21 Aug 1997 19:01:14 EDT
cc: "'Dan.McDonald@eng.Sun.COM'" <Dan.McDonald@Eng.Sun.Com>, "'ipsec@tis.com'" <ipsec@tis.com>
In-reply-to: Your message of "Thu, 21 Aug 1997 18:10:49 EDT." <c=US%a=_%p=TimeStep_Corpora%l=TSNTSRV2-970821221049Z-6535@tsntsrv2.timestep.com>
Sender: owner-ipsec@ex.tis.com

-----BEGIN PGP SIGNED MESSAGE-----


In message <c=US%a=_%p=TimeStep_Corpora%l=TSNTSRV2-970821221049Z-6535@tsntsrv2.
timestep.com>, Roy Pereira writes:
>Perhaps "back door" was too strong of a statement, but manual keying
>might present a security risk if an uninformed user set it up
>incorrectly.

Nothing in the world can protect you if your priviledged users are
uninformed (well, maybe MLS).
- -Angelos

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBM/zIur0pBjh2h1kFAQGubgP/eUSxzW2qPHpfvYY0jHC43+Y8JHfNi6t6
Ewuu2BgqcJI3WpqWr1ClM+4tX/gaV6BxIqCs3ZnojqNcSjz4mgdD7ECV4PYAveKr
UNGL5KDkzNAg7SKrjqHMJDG394G4JroRVCgn7AfK7LfrlffSxbhhABNIzlCdLRqO
9FAUiBdeh2E=
=pSS8
-----END PGP SIGNATURE-----

References:

RE: manual keying and IPSEC conformance

From: Roy Pereira <rpereira@TimeStep.com>

Prev by Date: RE: manual keying and IPSEC conformance
Next by Date: Re: anti-replay notification
Prev by thread: RE: manual keying and IPSEC conformance
Next by thread: Re: manual keying and IPSEC conformance
Index(es):
- Main
- Thread