FreeBSD Mail Archives

Date:      Fri, 11 Aug 2006 11:49:26 -0500
From:      Paul Schmehl <pauls@utdallas.edu>
To:        Matthew Seaman <m.seaman@infracaninophile.co.uk>
Cc:        "Marc G. Fournier" <scrappy@freebsd.org>, Nikolas Britton <nikolas.britton@gmail.com>, freebsd-questions@freebsd.org
Subject:   Re: BSDstats Project v2.0 ...
Message-ID:  <44DCB516.40501@utdallas.edu>
In-Reply-To: <44DCAFFE.6090400@infracaninophile.co.uk>
References:  <20060807003815.C7522@ganymede.hub.org>	<20060808201359.S7522@ganymede.hub.org>	<44D91F02.90107@mawer.org>	<20060808212719.L7522@ganymede.hub.org>	<20060809072313.GA19441@sysadm.stc>	<20060809055245.J7522@ganymede.hub.org>	<44D9F9C4.4050406@utdallas.edu>	<20060809130354.U7522@ganymede.hub.org>	<ef10de9a0608091700x6cc268ear6566c26f93f1fdf0@mail.gmail.com>	<ef10de9a0608100327r5b402d64xc4eef38a4f61ba4e@mail.gmail.com>	<ef10de9a0608110342q62f81fc8p5fb4b4df37595593@mail.gmail.com>	<20060811100914.U7522@ganymede.hub.org>	<44DCA340.2050204@utdallas.edu> <44DCAFFE.6090400@infracaninophile.co.uk>


[-- Attachment #1 --]
Matthew Seaman wrote:
> Paul Schmehl wrote:
>  
>> 1) encrypt the data being fed to your systems by the script - this
>> should be relatively easy using keys and would ensure that a man in the
>> middle attack would fail.  You can connect using ssh and a unique key
>> without having to reveal passwords to anyone.
> 
> Uh... HTTPS surely?  Because it's relatively simple to implement on both
> client and server, doesn't require extra software installed on every client
> beyond the monthly stats script itself and because of the way that HTTPS
> uses a one-sided Diffie Helmann exchange to create session keys which means
> that you don't have any trouble with key management on the many thousands
> of client boxes out there...
> 
I defer to your obviously greater experience and wisdom.  :-)

I would note that these issues appear to be impacting the project.  As 
of right now, there are only 1612 systems reporting in, and I suspect 
there are a much greater number of systems distributed throughout the 
computing universe.  Certainly some can be attributed to the newness of 
the project and the small amount of promotion done to date, but I can't 
help but think that at least some of it is due to hesitancy on the part 
of some to submit their data.

For my part, I've submitted two public hosts.  I have four others I will 
not submit until I'm certain the data are securely transmitted and stored.

Surely I'm not alone?

-- 
Paul Schmehl (pauls@utdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/

[-- Attachment #2 --]
0�	*�H��
��0�10	+0�	*�H��
��N0��0�A�A�=�������e0
	*�H��
0��10	UUS10U
VeriSign, Inc.1<0:U3Class 2 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
990331000000Z
090330235959Z0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0��0
	*�H��
��0��������
��"�����zھ6�p`0`��S/5�ɨ)��=���d}�чTx���x�������L�IA
��ҥ��~�BQNt��hs�]1��)%c�#�Dj���9���FXú��K�z��I��#C���2����0��0)U"0 �010UPrivateLabel1-1400	`�H��B0DU =0;09`�H��E0*0(+https://www.verisign.com/RPA0U0�0U0
	*�H��
��S	�ܲ��� P��8y���I��S�o�̲�z|���_a^_��Zҕ"���T�T�T��T�i�!7��9������]�H9Y�$ C���܃t����j��11#%���,Q�Y���Ҵ�T0�s0�ܠ0�8�����'ƚE��0
	*�H��
0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0
060721000000Z
070721235959Z0��1'0%U
The University of Texas System1-0+U$The University of Texas at Dallas CA1F0DU=www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)9910UMail Stop - UTD10UPaul Schmehl1!0	*�H��
	pauls@utdallas.edu0��0
	*�H��
��0�����P��L;帽����N�C4��j��DQ�B�T�n�"Ε�Q�#�>��D��2+ٳ��E:���z��8��"�"��pX�X
����
��$�3\�
�Z���%����n;�v���wfcŀ��b�F����0�0	U00U0�pauls@utdallas.edu0�$U �0�0�`�H��E0�0++https://www.verisign.com/rpa-kr0��+0����NOTICE: Private key may be recovered by VeriSign's customer who may be able to decrypt messages you send to certificate holder.  Use is subject to terms at https://www.verisign.com/rpa-kr (c)99.0	`�H��B�0uUn0l0j�h�f�dhttp://onsitecrl.verisign.com/TheUniversityofTexasSystemTheUniversityofTexasatDallasCA/LatestCRL.crl0U 0U%0++0
	*�H��
��5�
ku��CO\��G��EzB�?�^�����2��&�?JF⠉ЪuPP�̲�+�%���&�mT������h����}���Q�����+b�W�����qXXJȨ��V6U�!����0��0�`�G@±-���	�_=c0
	*�H��
0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0
060721000000Z
070721235959Z0��1'0%U
The University of Texas System1-0+U$The University of Texas at Dallas CA1F0DU=www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)9910UMail Stop - UTD10UPaul Schmehl1!0	*�H��
	pauls@utdallas.edu0�"0
	*�H��
�0�
��l��SvN��ê7�a_^
�e7@�m#�e�qb�fjl2�O'���R�,ǹ�g<Қ���S҃0��}F,�hz��l��Nr�F���x���l�Pe��9TS�$��
1Ǥ�=��:.�n����i����Jܮ�md)�1��t��'���f�m8Z��?���P��\/(=&��h<|Q��q�B��&�����P��v)cf�O>���96S)�t��U_�p\�����Z�?
��I]��K�e��zc�Ʒ!����0�0	U00U0�pauls@utdallas.edu0�$U �0�0�`�H��E0�0++https://www.verisign.com/rpa-kr0��+0����NOTICE: Private key may be recovered by VeriSign's customer who may be able to decrypt messages you send to certificate holder.  Use is subject to terms at https://www.verisign.com/rpa-kr (c)99.0	`�H��B�0uUn0l0j�h�f�dhttp://onsitecrl.verisign.com/TheUniversityofTexasSystemTheUniversityofTexasatDallasCA/LatestCRL.crl0U�0U%0++0
	*�H��
��=Pjcr��:%�s#N�ܒE�ȴRB֐�)'�W��Tѹ�v>�!ɑog<\�/��
��fb�h�!��`�ؓ���?/)#�D����3�?J��}��36'3�u��z݋���bn�Ku9��|
MG1�0�0��0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CAG@±-���	�_=c0	+���0	*�H��
	1	*�H��
0	*�H��
	1
060811164926Z0#	*�H��
	1��z{�?�w{��s�z<��0R	*�H��
	1E0C0
*�H��
0*�H��
�0
*�H��
@0+0
*�H��
(0�	+�71�0��0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0�8�����'ƚE��0�*�H��
	1����0��1'0%U
The University of Texas System10UVeriSign Trust Network1;09U2Terms of use at https://www.verisign.com/rpa (c)991200U)Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0�8�����'ƚE��0
	*�H��
��˞��L_�z��u%��1R�x�^�l�A|]�p�,QI��K�Df�"��*
���DP�tY��:�=�I�柱&v�K��4ڮ�I�3*�8�4���Y=e����3G�4f�A��8oѸ��΂ζ-�{��Rm��G)~�5Ob��] ��g�k��<f�,4/��2�z���xo��A����6PB��@���b��j��b�^p��ϐJĒ���v!�C,-�#%w��@����Q;e,gH��ԙ�R��)�L

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44DCB516.40501>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation