Paul Mackerras wrote:
>
> [EMAIL PROTECTED] (Robert Spier) wrote:
>
> > Agreed. What's lacking _is_ a real encrypted storage/transport
> > authentication system for PPP. You can get one -or- the other,
> > encrypted transport with CHAP, encrypted storage with PAP.
>
> I can't see any way to do that without using some public key
> encryption system (e.g. RSA). And that opens a whole can of
> worms (non-technical ones).
There are some less secure options, using oneway Hashes, random data, and
time stamps, Lower security, but they do handle a lot of the
things that people really are after when they are wanting password
encryption. But it requires that a secret is known both sides, and
is scrambled with some semi random data - the passwords can be cracked
but it takes a little more work than for plain text.
I would propose that such an option would be ideal for this kind of
thing, as MD5 is not under any form for export restrictions.
mvh
mike.
--
#include <stddisclaimer.h>
-----------------------------------------------------------------------
(Ingeni�r) Michael Nielsen BE(Hons)
telf: +45 9828 4611 x 26
USE THIS -> Private email : [EMAIL PROTECTED] fax : +45 9828 4565
-----------------------------------------------------------------------
At arbejede er godt, s� l�nge man husker at leve!
(To work is good as long as we remember to live!)
-
To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
the body of a message to [EMAIL PROTECTED]
