version 1.221, 2001/11/08 11:25:04 |
version 1.222, 2001/12/23 03:09:47 |
|
|
rather than reactive to security problems."</em><br> |
rather than reactive to security problems."</em><br> |
Then goes on naming OpenBSD's <em>secure by default</em> |
Then goes on naming OpenBSD's <em>secure by default</em> |
policy, Kerberos authentication protocol implementation, and |
policy, Kerberos authentication protocol implementation, and |
TCP/IP stack built-in IPSec protocol, as ready to use VPN |
TCP/IP stack built-in IPsec protocol, as ready to use VPN |
solutions whereas they are options to be installed and applied |
solutions whereas they are options to be installed and applied |
on other operating systems.<br> |
on other operating systems.<br> |
Furthermore, he writes he agrees with Theo de Raadt while |
Furthermore, he writes he agrees with Theo de Raadt while |
|
|
important point: if an OS or mail system ships with relaying open by default, |
important point: if an OS or mail system ships with relaying open by default, |
what message does that send about that system's resistance to less trivial |
what message does that send about that system's resistance to less trivial |
attacks. He also chides Intel and 3Com for not providing driver |
attacks. He also chides Intel and 3Com for not providing driver |
documentation to allow their IPSec networking cards to be used. |
documentation to allow their IPsec networking cards to be used. |
<p> |
<p> |
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |
|
|
<a href="http://napalm.firest0rm.org/issue7.txt">Using IPSEC and Samba to integrate Windows Networks</a>, Napalm, October 6, 2000 |
<a href="http://napalm.firest0rm.org/issue7.txt">Using IPSEC and Samba to integrate Windows Networks</a>, Napalm, October 6, 2000 |
</strong></font><br> |
</strong></font><br> |
|
|
OpenBSD, IPSec, IPF, Samba and Windows: azure covers it all in this |
OpenBSD, IPsec, IPF, Samba and Windows: azure covers it all in this |
networking epic about connecting two Windows-based networks over a VPN |
networking epic about connecting two Windows-based networks over a VPN |
- whether they like it or not. |
- whether they like it or not. |
<p> |
<p> |
|
|
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |
<!-- <a href="http://www.securityportal.com/closet/closet20000726.html"> --> |
<!-- <a href="http://www.securityportal.com/closet/closet20000726.html"> --> |
IPSec - We've Got a Ways To Go (Part II), Security Portal, July 26, 2000 |
IPsec - We've Got a Ways To Go (Part II), Security Portal, July 26, 2000 |
</strong></font><br> |
</strong></font><br> |
|
|
Kurt Seifried discusses various key management and tunnel modes and extensions |
Kurt Seifried discusses various key management and tunnel modes and extensions |
|
|
(part 1)</a>, Napalm, July 13, 2000 |
(part 1)</a>, Napalm, July 13, 2000 |
</strong></font><br> |
</strong></font><br> |
|
|
Technical article about IPSec by ajax, discussing the networking basics, |
Technical article about IPsec by ajax, discussing the networking basics, |
the key management daemons and various free and commercial implementations. |
the key management daemons and various free and commercial implementations. |
This goes well beyond the usual how-to articles to explain the underlying |
This goes well beyond the usual how-to articles to explain the underlying |
protocols and their quirks. |
protocols and their quirks. |
|
|
</strong></font><br> |
</strong></font><br> |
|
|
Press release from Global Technologies Group, Inc. announcing OpenBSD |
Press release from Global Technologies Group, Inc. announcing OpenBSD |
support for their PowerCrypt IPSec hardware accelerators cards. |
support for their PowerCrypt IPsec hardware accelerators cards. |
<p> |
<p> |
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |
|
|
|
|
<li><font color="#009000"><strong> |
<li><font color="#009000"><strong> |
<a href="http://www.daemonnews.org/199811/security.html"> |
<a href="http://www.daemonnews.org/199811/security.html"> |
OpenBSD and IPSec, leading the pack</a>, November, 1998 |
OpenBSD and IPsec, leading the pack</a>, November, 1998 |
</strong></font><br> |
</strong></font><br> |
|
|
A two-part article by Ejovi Nuwere focusing on OpenBSD's IPSec Development. |
A two-part article by Ejovi Nuwere focusing on OpenBSD's IPsec Development. |
Part one is an introduction to OpenBSD's Photurisd and its current |
Part one is an introduction to OpenBSD's Photurisd and its current |
Implementation, including a brief interview with |
Implementation, including a brief interview with |
Photurisd creator Neils Provos. |
Photurisd creator Neils Provos. |
|
|
<a href="http://www.datateknik.se/arkiv/98-20/28.html"> |
<a href="http://www.datateknik.se/arkiv/98-20/28.html"> |
Datateknik</a>, Nov 20, 1998</strong></font><br> |
Datateknik</a>, Nov 20, 1998</strong></font><br> |
|
|
An article on the swedish <a href="events.html#ipsec98">IPSec interop</a> event |
An article on the swedish <a href="events.html#ipsec98">IPsec interop</a> event |
mentions OpenBSD as one of the successful participants, and has a |
mentions OpenBSD as one of the successful participants, and has a |
mini-interview with OpenBSD developer Niklas Hallqvist. |
mini-interview with OpenBSD developer Niklas Hallqvist. |
<p> |
<p> |
|
|
important point: if an OS or mail system ships with relaying open by default, |
important point: if an OS or mail system ships with relaying open by default, |
what message does that send about that system's resistance to less trivial |
what message does that send about that system's resistance to less trivial |
attacks. He also chides Intel and 3Com for not providing driver |
attacks. He also chides Intel and 3Com for not providing driver |
documentation to allow their IPSec networking cards to be used. |
documentation to allow their IPsec networking cards to be used. |
<p> |
<p> |
|
|
<h2>September, 1999</h2> |
<h2>September, 1999</h2> |