From owner-freebsd-hackers Thu Aug 12 11:31:21 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from quack.kfu.com (quack.kfu.com [170.1.70.2]) by hub.freebsd.org (Postfix) with ESMTP id 1D30F15830 for ; Thu, 12 Aug 1999 11:31:18 -0700 (PDT) (envelope-from nsayer@medusa.kfu.com) Received: from medusa.kfu.com (medusa.kfu.com [170.1.70.5]) by quack.kfu.com (8.9.2/8.8.5) with ESMTP id LAA35314 for ; Thu, 12 Aug 1999 11:31:28 -0700 (PDT) Received: (from nsayer@localhost) by medusa.kfu.com (8.9.2/8.8.8) id LAA55284; Thu, 12 Aug 1999 11:31:27 -0700 (PDT) (envelope-from nsayer) Date: Thu, 12 Aug 1999 11:31:27 -0700 (PDT) Message-Id: <199908121831.LAA55284@medusa.kfu.com> To: freebsd-hackers@freebsd.org From: Nick Sayer Subject: Whither makefiles for src/crypto/telnet/* ? Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG A long time ago I got some kinky modifications to telnet from a place in Germany the purpose of which was to encrypt telnet sessions. It did a Diffie-Hellman up front and used the common secret as a DES key sort of the way Kerberos does. It was called SRA telnet. It was vulnerable to monkey-in-the-middle, but it was better than nothing and unlike other encrypted session systems it had NO administrative overhead. I also added IDEA as an alternative encryption method just to sort of up the ante a bit. At one point I seem to remember that the cryto telnet sources sort of got combined inexorably with Kerberos, which made the idea of adding SRA in order to get a standalone encrypted telnet to be standard-issue sort of die. But today, just out of curiosity, I decided to see if it would be possible to resurrect the idea. In the scrypto section, I see that the telnet stuff is set aside nicely in its own spot. I was able to add my patches just fine, but it appears that the Makefiles are somewhere else. Maybe in with the kerberos stuff or something? Does anyone know how telnet actually gets built when you want a telnet/telnetd that uses encryption? I would once again like to add SRA to telnet/telnetd. There is something to be said for having something reasonably secure in the default (at least for the domestic audience) distribution. Yes, we can all go add the ssh port, but having an encrypted telnet work right out of the box is a good thing. So I can pretty easily turn this into something that can be added right into src/crypto/telnet, but I need to find out about the Makefile issue. Can anyone help? Thanks in advance. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message