[14313] in cryptography@c2.net mail archive
Re: Tinc's response to "Linux's answer to MS-PPTP"
daemon@ATHENA.MIT.EDU (Eric Rescorla)
Sun Sep 28 04:21:23 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
To: M Taylor <mctylr@privacy.nb.ca>
Cc: Cryptography list <cryptography@metzdowd.com>,
Joseph Ashwood <ashwood@msn.com>, guus@sliepen.eu.org, ivo@o2w.nl
Reply-To: EKR <ekr@rtfm.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: 27 Sep 2003 15:42:02 -0700
In-Reply-To: <20030927195814.A13877@pull.privacy.nb.ca>
M Taylor <mctylr@privacy.nb.ca> writes:
> On Fri, Sep 26, 2003 at 06:26:16PM -0700, Joseph Ashwood wrote:
> > > Both SSL and SSH have had their security
> > > problems . . , as perfect as Peter Gutmann would let us believe.
> > They may not be perfect but in neither case can Mallet do as much damage as
> > easily, even the recent break in OpenSSH did not allow a compromise as big
> > as even the smallest of the problems briefly explored in tinc.
>
> Oh, and they fixed their flaws. SSHv1 is not recommended for use at all,
> and most systems use SSHv2 now which is based upon a draft IETF standard.
> SSL went through SSLv1, SSLv2, SSLv3, TLSv1.0, and TLSv1.1 is a draft IETF
> standard.
Nitpicking alert:
"Draft Standard" is the technical term for the second tier of
IETF standardization. (Proposed, Draft, Full). The term for
something that has not yet been approved and given an RFC #
is "Internet Draft". SSHv2 and TLSv1.1 are Internet Drafts.
-Ekr
--
[Eric Rescorla ekr@rtfm.com]
http://www.rtfm.com/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com