[804] in bugtraq
Re: Would an encrypted tunnel solve the SeqNo guessing attack?
daemon@ATHENA.MIT.EDU (Mark (Mookie))
Fri Jan 27 00:12:01 1995
From: Mark (Mookie) <mark@zang.kcc.hawaii.edu>
To: bet@std.sbi.com (Bennett Todd)
Date: Thu, 26 Jan 1995 17:30:48 -1000 (HST)
Cc: bugtraq@fc.net
In-Reply-To: <9501262104.AA21300@std.sbi.com> from "Bennett Todd" at Jan 26, 95 04:04:24 pm
>Suppose I took term (a multiplexing, compressing, error-correcting serial
>tunnel program) and added encryption, and rigged that to be my login shell.
>I'd log in to the computer, and after my S/Key prompt it'd fire up an
>encrypted term. I don't see any way some could burgle in through that.
>
>Have I missed something fundamental here? Or would this work?
I use a similar setup now, triple des streams from my home machine to my
destination machine with term firewalled to prevent any sort of files or
ports being opened. It does work, you simply need to plug in the right modules.
Mark
