Bugtraq mailing list archives
Re: Network Monitoring and Control (announcement)
From: nsayer () quack kfu com (Nick Sayer)
Date: Tue, 4 Apr 1995 09:54:24 -0700
root <root () madhouse com> wrote:
Am I the only one who feels this is an invasion of privacy?
Of course one way around such nonsense is to use session encryption. For instance, for telnet sessions, presuming you have the wherewithall to (legally) install a new telnetd on the other end of the connection, you can run the tucif SRA telnet/telnetd suite. It uses an algorithm similar to secure RPC to exchange authentication data, and then uses the exchanged cookies as DES keys to encrypt the session. It would be extremely difficult for someone to snoop or 'take over' an encrypted session in real time (recording and decoding the session later is still possible, I suppose). ftp://ftp.tu-chemnitz.de/pub/Local/informatik/sec_tel_ftp Grab the libdes, gmp and tucif-sra tars.
Current thread:
- Re: Network Monitoring and Control (announcement) Andrew V. Kovalev (Apr 01)
- <Possible follow-ups>
- Re: Network Monitoring and Control (announcement) Chris Herringshaw (Apr 01)
- Re: Network Monitoring and Control (announcement) Rens Troost (Apr 03)
- Re: Network Monitoring and Control (announcement) Tom 'moof' Spindler (Apr 03)
- Re: Network Monitoring and Control (announcement) Rens Troost (Apr 04)
- ANNOUNCE: Rscan 1.4.0 and IRIX-security, NetSecurity Modules Nate Sammons (Apr 03)
- Re: Network Monitoring and Control (announcement) Rens Troost (Apr 03)
- Re: Network Monitoring and Control (announcement) Nick Sayer (Apr 04)
- Re: Network Monitoring and Control (announcement) Dios (Apr 04)