===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/crypto.html,v
retrieving revision 1.23
retrieving revision 1.24
diff -u -r1.23 -r1.24
--- www/crypto.html 1998/11/14 20:23:31 1.23
+++ www/crypto.html 1998/12/01 08:19:03 1.24
@@ -95,6 +95,7 @@
spoofing attacks.
To generate salts for the various password algorithms.
For generating fake S/Key challenges.
+In isakmpd to provide liveness proof of key exchanges.
@@ -112,11 +113,12 @@
e.g.
- In S/Key support to provide one time passwords.
-
- In
- IPSec or Photuris to authenticate the data origin of packets
+
- In IPsec,
+ photurisd and isakmpd to authenticate the data origin of packets
and to ensure packet integrity.
- For FreeBSD-style MD5 passwords (not enabled by default).
- For TCP SYN cookie support (not enabled by default).
+
- In libssl for digital signing of messages.
@@ -127,14 +129,19 @@
a decryption key for data decryption. The security of a Cryptographic
Transform should rely only on the keying material.
-OpenBSD provides transforms like DES and Blowfish for the kernel and userland
-programs, which are used in many places like
+OpenBSD provides transforms like DES, 3DES, Blowfish and Cast for the
+kernel and userland programs, which are used in many places like
- In libc for creating Blowfish passwords.
-
- In IPSec
- to provide confidentiality for the network layer.
+
- In IPsec to provide confidentiality for the network layer.
- In kerberized telnet.
-
- In Photuris to protect the exchanged packet content.
+
- In
+ photurisd and isakmpd to protect the exchanges where IPsec key
+ material is negotiated.
+
- In AFS to protect the messages passing over the network, providing
+ confidentiality of remote filesystem access.
+
- In libssl to let applications communicate over the de-facto standard
+ cryptographically secure SSL protocol.
@@ -142,7 +149,7 @@
www@openbsd.org
-$OpenBSD: crypto.html,v 1.23 1998/11/14 20:23:31 deraadt Exp $
+$OpenBSD: crypto.html,v 1.24 1998/12/01 08:19:03 niklas Exp $