===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/crypto.html,v
retrieving revision 1.23
retrieving revision 1.24
diff -c -r1.23 -r1.24
*** www/crypto.html 1998/11/14 20:23:31 1.23
--- www/crypto.html 1998/12/01 08:19:03 1.24
***************
*** 95,100 ****
--- 95,101 ----
spoofing attacks.
To generate salts for the various password algorithms.
For generating fake S/Key challenges.
+ In isakmpd to provide liveness proof of key exchanges.
***************
*** 112,122 ****
e.g.
- In S/Key support to provide one time passwords.
!
- In
! IPSec or Photuris to authenticate the data origin of packets
and to ensure packet integrity.
- For FreeBSD-style MD5 passwords (not enabled by default).
- For TCP SYN cookie support (not enabled by default).
--- 113,124 ----
e.g.
- In S/Key support to provide one time passwords.
!
- In IPsec,
! photurisd and isakmpd to authenticate the data origin of packets
and to ensure packet integrity.
- For FreeBSD-style MD5 passwords (not enabled by default).
- For TCP SYN cookie support (not enabled by default).
+
- In libssl for digital signing of messages.
***************
*** 127,140 ****
a decryption key for data decryption. The security of a Cryptographic
Transform should rely only on the keying material.
! OpenBSD provides transforms like DES and Blowfish for the kernel and userland
! programs, which are used in many places like
- In libc for creating Blowfish passwords.
!
- In IPSec
! to provide confidentiality for the network layer.
- In kerberized telnet.
!
- In Photuris to protect the exchanged packet content.
--- 129,147 ----
a decryption key for data decryption. The security of a Cryptographic
Transform should rely only on the keying material.
! OpenBSD provides transforms like DES, 3DES, Blowfish and Cast for the
! kernel and userland programs, which are used in many places like
- In libc for creating Blowfish passwords.
!
- In IPsec to provide confidentiality for the network layer.
- In kerberized telnet.
!
- In
! photurisd and isakmpd to protect the exchanges where IPsec key
! material is negotiated.
!
- In AFS to protect the messages passing over the network, providing
! confidentiality of remote filesystem access.
!
- In libssl to let applications communicate over the de-facto standard
! cryptographically secure SSL protocol.
***************
*** 142,148 ****
www@openbsd.org
! $OpenBSD: crypto.html,v 1.23 1998/11/14 20:23:31 deraadt Exp $