mailing list archives
Re: Network Monitoring and Control (announcement)
From: nsayer () quack kfu com (Nick Sayer)
Date: Tue, 4 Apr 1995 09:54:24 -0700
root <root () madhouse com> wrote:
Am I the only one who feels this is an invasion of privacy?
Of course one way around such nonsense is to use session encryption.
For instance, for telnet sessions, presuming you have the wherewithall
to (legally) install a new telnetd on the other end of the connection,
you can run the tucif SRA telnet/telnetd suite. It uses an algorithm
similar to secure RPC to exchange authentication data, and then uses
the exchanged cookies as DES keys to encrypt the session. It would
be extremely difficult for someone to snoop or 'take over' an encrypted
session in real time (recording and decoding the session later is
still possible, I suppose).
Grab the libdes, gmp and tucif-sra tars.