Ray Percival wrote:
To start with http://www.schneier.com/pptp.html and also because I for one don't trust *any* security related code that I can't get the source for. I think I'm not alone here by any means.
You're talking about PPTP, I'm talking about IPsec.
Fact of the matter is we can look at the OpenSSH code and see if the problems that we know about are fixed or not. You can't do that with closed source. So do you really want to trust your data going over a public network to a vendor with Microsoft's rep for getting crypto and security wrong?
You're talking about MS PPTP vs. OpenSSH, I'm talking about MS IPsec VPN vs. third-party VPN hardware (Checkpoint, Intel, Cisco).
