Mailing List Archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[tlug] Re: VPN



Tod McQuillin wrote:
> On Mon, 6 Dec 2004, Christopher SEKIYA wrote:
> >Option #2 ain't even close to trustworthy.  Go ahead -- set up a 
> >solution using PPTP, go to defcon, use it, and see how fast your 
> >concentrator is cracked.
> 
> Chris omits to mention why SSL and other TCP/IP based solutions (like ppp 
> over SSH etc) are a bad idea:
> 
> http://sites.inka.de/sites/bigred/devel/tcp-tcp.html

OpenVPN is not tcp over tcp, its tcp over udp and thus should be ok
from that perspective.  And I don't see why it shouldn't be as
trustworthy as IPSec (Assuming that your local network is secure or
you are using it endpoint to endpoint)?

-- 
Tobias


Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links