On Tue, 28 Sep 1999, Andrew Benham wrote:
> On Mon, 27 Sep 1999, M Taylor wrote:
>
> > In Canada an encrypted telnet, ssh, SSL, or encrypted SMTP or POP3 would
> > likely violate Radiocommunication Regulations section 47b:
> >
> > 47. A person who operates radio apparatus that is licensed in the amateur
> > radio service may only
> > ...
> > (b) use a code or cipher that is not secret; and
>
> The encryption schemes around these days use published codes/ciphers,
> it is merely the keys which are secret. I don't know whether this
> is a legal nicety or not - you decide.
>
> 73, G8FSL
Since government agencies (Industry Canada, FCC, UK RA?) are suppose to
have the ability to "listen in" on any amateur radio communication - in
part to monitor that the amateurs are using it for noncommercial,
nonbroadcast communications that do not violate the Radiocommunication
Regulations, public-key based encryption would be considered secret - the
private key is a critical part and is unknown to the listen - thus secret.
The terminology is written so as to permit "digital code" such as ASCII,
PSK31, and any other "encoding" methods which are publiclly known, and
anyone listening could decipher/decode into intelligable information.
----------
To control access, I would make certain that you use a recent kernel,
2.2.12 works well for me, and have all necessary distribution's
patches and updates installed. You can use tcp_wrappers for "course"
access control such 44.*.*.* vs. from the internet access, and a
mini-firewall using ipchains for "finer grain" access control and logging.
