[14313] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

Re: Tinc's response to "Linux's answer to MS-PPTP"

daemon@ATHENA.MIT.EDU (Eric Rescorla)
Sun Sep 28 04:21:23 2003

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
To: M Taylor <mctylr@privacy.nb.ca>
Cc: Cryptography list <cryptography@metzdowd.com>,
	Joseph Ashwood <ashwood@msn.com>, guus@sliepen.eu.org, ivo@o2w.nl
Reply-To: EKR <ekr@rtfm.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: 27 Sep 2003 15:42:02 -0700
In-Reply-To: <20030927195814.A13877@pull.privacy.nb.ca>

M Taylor <mctylr@privacy.nb.ca> writes:
> On Fri, Sep 26, 2003 at 06:26:16PM -0700, Joseph Ashwood wrote:
> > > Both SSL and SSH have had their security
> > > problems . . , as perfect as Peter Gutmann would let us believe.
> > They may not be perfect but in neither case can Mallet do as much damage as
> > easily, even the recent break in OpenSSH did not allow a compromise as big
> > as even the smallest of the problems briefly explored in tinc.
> 
> Oh, and they fixed their flaws. SSHv1 is not recommended for use at all,
> and most systems use SSHv2 now which is based upon a draft IETF standard. 
> SSL went through SSLv1, SSLv2, SSLv3, TLSv1.0, and TLSv1.1 is a draft IETF
> standard.

Nitpicking alert:
"Draft Standard" is the technical term for the second tier of
IETF standardization. (Proposed, Draft, Full). The term for
something that has not yet been approved and given an RFC #
is "Internet Draft". SSHv2 and TLSv1.1 are Internet Drafts.

-Ekr
                 
-- 
[Eric Rescorla                                   ekr@rtfm.com]
                http://www.rtfm.com/

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com

home help back first fref pref prev next nref lref last post