On Sat, Feb 28, 2009 at 05:49:22PM +0100, Felipe Alfaro Solana wrote: [snip] > Of course if the attacker can gain remote access to the machine, IPSec is > not very useful since the attacker can probably retrieve the encryption keys > from the kernel :)
And the same is true of NFSv4. And if your attacker is able to read random kernel memory, you've already got bigger issues. - Bert
