> > > In my opinion, IPSec seems to be the way to go. Then, the only > > > thing not secure would be the tftp of the kernel. > > Using IPsec is likely to be better than ssh for a lot of reasons, but in some > cases ssh might be easier to set up.
CIPE is fairly simple and effective alternative to IPsec; most of the code is in userspace with a minimal kernel interface. http://sites.inka.de/sites/bigred/devel/cipe.html Please beware that any netbooted system is open to attack unless the client key is stored somewhere secure - especially if the client key is shoved over the net as part of a boot image or configuration... :) ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.openprojects.net
