Re: [Users] encryption key

From: Sam Sgro (sam_at_freeswan.org)
Date: Fri Jan 10 2003 - 18:31:20 CET

• Next message: Barry, Christopher: "RE: [Users] WAN host <-> NATd LAN host"
• Previous message: Paul Wouters: "Re: [Users] Working ipchains code for FreeS/WAN"
• In reply to: Francesco: "[Users] encryption key"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

-----BEGIN PGP SIGNED MESSAGE-----

On Fri, 10 Jan 2003, Francesco wrote:

> i have just set up a VPN by two FreeS/Wan Linux firewall which work over two
> optical fibre connection (10Mb/s).
>
> I have created and installaed a 1024 RSA key.
>
> Do you think it is enough or someone could decrypt it and sniff datas?

Why bother? Use IKE, and automatically key your connections. It's a vast
improvement in security over a manually keyed connection. Anyone who acquires
that key will be able to decrypt all data ever sent under it's aegis.

- --
Sam Sgro
sam_at_freeswan.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.

iQCVAwUBPh8Da0OSC4btEQUtAQFL2wQAkMnS9VBWpQGuyY2y/v/p0SOqc7Ur10HV
TDVvugRJHHOXQbACo0HqVUxazWkEzLURmQD/Puh9L43oxIJyI6kYlT78uUnyXuWQ
9/MBAucqH6w4+SFhaS9eR8wrbDy/t5Qc8HfP7rFUbSWlag+3W+dBG2VR4wSM3tQw
QHuZTY08ftY=
=2+8L
-----END PGP SIGNATURE-----

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Barry, Christopher: "RE: [Users] WAN host <-> NATd LAN host"
• Previous message: Paul Wouters: "Re: [Users] Working ipchains code for FreeS/WAN"
• In reply to: Francesco: "[Users] encryption key"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Sun Jan 12 2003 - 05:21:07 CET