Security Basics mailing list archives

Re: SSL VPN

From: Bill Moran <wmoran () potentialtech com>
Date: Wed, 20 Jul 2005 13:56:57 -0400

ec () ec com wrote:

You get what you pay for...I would not implement a free ssl vpn.

Take a look at companies like Check Point. They have the most secure and
flexible SSL VPN solutions avail.


There is absolutely no evidence to demonstrate that SSL VPN solutions that
must be paid for are any better than free ones.

There is considerable evidence to support the theory that open-source
development results in significantly less buggy software than closed
source development.  In most cases, the SSL algorithms used by the VPN
solutions are the same for both closed and open-sourced software.  Thus,
the main security concern is whether the software implementing those
algorithms is bug-free or not.

Thus, evidence supports the theory that an open-source VPN solution is
more likely to be secure than a closed-source one.

-- 
Bill Moran
Potential Technologies
http://www.potentialtech.com

Current thread:

RE: SSL VPN Doug Massey (Jul 18)
- <Possible follow-ups>
- Re: RE: SSL VPN ec (Jul 20)
  - Re: SSL VPN Bill Moran (Jul 21)
- RE: SSL VPN Beauford, Jason (Jul 20)
- re: SSL VPN echow (Jul 20)
- Re: RE: SSL VPN jason . franks (Jul 20)
- RE: SSL VPN stefan.sulistyo (Jul 21)
- Re: RE: SSL VPN sriccon (Jul 21)
- RE: RE: SSL VPN Steven Jones (Jul 21)
  - Re: RE: SSL VPN Eduardo Kienetz (Jul 22)
- RE: RE: SSL VPN Joshua Sanders (Jul 22)
  - Re: SSL VPN Jeff Blanton (Jul 26)
- RE: SSL VPN ttate (Jul 26)

(Thread continues...)