This will lead to: +: you will have less CPU usage overall -: you will have a LOT more complex configuration, which may lead to vulnerabilities (think of probable misconfiguration and it's consequences)
So, do you really need to decrease CPU usage in cost of security? Sincerely yours, Andrew Terekhov. Andreas Schuldei пишет: > hi! > > now that i have ipsec in place, how do i replace ssh? i would like to > avoid double encryption, in order to not create extra work. > > how well do rsh, rcp and friend perform? i see there is a package > rsh-redone-server (and client) in debian, working over inetd. does > anyone use those? did someone come up with a useful set of iptable > rules in order to allow the use of the respective ports only when > coming from esp (or whatever good criteria there might be)? > > /andreas > _______________________________________________ > Users mailing list > [email protected] > https://lists.strongswan.org/mailman/listinfo/users _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
