===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/crypto.html,v
retrieving revision 1.13
retrieving revision 1.14
diff -c -r1.13 -r1.14
*** www/crypto.html 1998/02/23 21:46:03 1.13
--- www/crypto.html 1998/02/24 00:26:51 1.14
***************
*** 72,83 ****
So far random numbers are used in the following places
! - ports of a bound socket,
!
- PIDs of processes,
!
- RPC transaction IDs,
!
- DNS Query-IDs,
!
- inode generation numbers and
!
- password salts.
--- 72,89 ----
So far random numbers are used in the following places
! - Dynamic sin_port allocation in bind(2).
!
- PIDs of processes.
!
- RPC transaction IDs (XID).
!
- NFS RPC transaction IDs (XID).
!
- DNS Query-IDs.
!
- Inode generation numbers, see getfh(2) and fsirand(8).
!
- Timing perturbance in traceroute(1).
!
- Stronger temporary names for mktemp(3) and mkstemp(3)
!
- Randomness added to the TCP ISS value for protection against
! spoofing attacks.
!
- To generate salts for the various password algorithms.
!
- For generating fake S/Key challenges.
***************
*** 94,103 ****
In OpenBSD MD5, SHA1, and RIPEMD-160 are used as Cryptographic Hash Functions,
e.g.
! - in S/Key to provide one time passwords,
!
- in
IPSec or Photuris to authenticate the data origin of packets
and to ensure packet integrity.
--- 100,111 ----
In OpenBSD MD5, SHA1, and RIPEMD-160 are used as Cryptographic Hash Functions,
e.g.
! - In S/Key support to provide one time passwords.
!
- In
IPSec or Photuris to authenticate the data origin of packets
and to ensure packet integrity.
+
- For FreeBSD-style MD5 passwords (not enabled by default).
+
- For TCP SYN cookie support (not enabled by default).
***************
*** 111,121 ****
OpenBSD provides transforms like DES and Blowfish for the kernel and userland
programs, which are used in many places like
! - in libc for creating Blowfish passwords,
!
- in IPSec
! to provide confidentiality for the network layer,
!
- in kerberized telnet,
!
- in Photuris to protect the exchanged packet content.
--- 119,129 ----
OpenBSD provides transforms like DES and Blowfish for the kernel and userland
programs, which are used in many places like
! - In libc for creating Blowfish passwords.
!
- In IPSec
! to provide confidentiality for the network layer.
!
- In kerberized telnet.
!
- In Photuris to protect the exchanged packet content.
***************
*** 123,129 ****
www@openbsd.org
! $OpenBSD: crypto.html,v 1.13 1998/02/23 21:46:03 deraadt Exp $