LISTSERV - HP3000-L Archives

HP3000-L Archives

December 2000, Week 4

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L December 2000, Week 4

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: TCP/IP Networking And RF Connections
From:	Wirt Atmar <[log in to unmask]>
Reply To:	[log in to unmask][log in to unmask]] > Sent: Thursday, December 28, 2000 8:30 AM > To: [log in to unmask] > Subject: Re: possible ER: bytestream support for DSCOPY? > > > I'm under the same impression, and it worries me a bit, as I quite > habitually use NS er DS ? for multiple sessions on multiple > boxes from one > terminal (ok, it's a Windoze PC, and this same scenario is > [...]60_28Dec200008:37:[log in to unmask]
Date:	Fri, 22 Dec 2000 13:44:28 EST
Content-Type:	text/plain
Parts/Attachments:	text/plain (24 lines)

Mark Bixby rightly writes:

> The problem with SSH is that special clients and servers are required.
>
>  It's a far cleaner solution to do security transparently at the IP
transport
>  layer so that no applications have to be modified.  This is the VPN
approach.

That is exactly correct. This is the right and proper place to put the
security process: at the transport layer. Security should be a process that
is completely invisible to everything above it [the various protocols (HTTP,
FTP, Telnet, etc.), and even higher yet, the application programs]. This is
the the simple and elegant solution.

> As was pointed out in another message in this thread, there are several VPN
> protocols to choose from.  I think IPsec will eventually predominate here,
> and that it would be cool if MPE could support IPsec some day.

I wholly agree.

Wirt Atmar

ATOM RSS1 RSS2

RAVEN.UTC.EDU