From owner-freebsd-stable  Tue Sep  5 10:34:16 2000
Delivered-To: freebsd-stable@freebsd.org
Received: from ptavv.es.net (ptavv.es.net [198.128.4.29])
	by hub.freebsd.org (Postfix) with ESMTP id E034437B42C
	for <freebsd-stable@FreeBSD.ORG>; Tue,  5 Sep 2000 10:34:14 -0700 (PDT)
Received: from ptavv.es.net (localhost [127.0.0.1])
	by ptavv.es.net (8.10.1/8.10.1) with ESMTP id e85HYBU18656;
	Tue, 5 Sep 2000 10:34:11 -0700 (PDT)
Message-Id: <200009051734.e85HYBU18656@ptavv.es.net>
To: Brad Knowles <blk@skynet.be>
Cc: Vivek Khera <khera@kciLink.com>, freebsd-stable@FreeBSD.ORG
Subject: Re: affordable wireless 
In-reply-to: Your message of "Tue, 05 Sep 2000 18:32:12 +0200."
             <v04220817b5dad01547b1@[195.238.1.121]> 
Date: Tue, 05 Sep 2000 10:34:11 -0700
From: "Kevin Oberman" <oberman@es.net>
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Brad,

We can agree that the 40 bit stuff is not worth the trouble. My 128
bit Lucent card says "128-bit RC-4 encryption". Last I heard, RC-4 was
not considered a "safe" algorithm.

Also, in any multi-user environment, the secret must be too public. (I
believe that when I know something, it's secure. When I tell someone,
it's secret. When someone else is told, it's public.)

Using an encrypted link is fine, but I worry that people will believe
far too much in its security. (Especially when they see "128-bit".)

If I'm wrong and it is 3DES, never mind! But still use ssh whenever
possible. 

R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: oberman@es.net			Phone: +1 510 486-8634


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message