Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1995: Re: Network Monitoring and Control (announcement)

Re: Network Monitoring and Control (announcement)

Nick Sayer (nsayerquack.kfu.com)
Tue, 4 Apr 1995 09:54:24 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: NetSurfer: "Re: All.Net's security testing service"
Previous message: Dios: "Re: Network Monitoring and Control (announcement)"

root <rootmadhouse.com> wrote:

>Am I the only one who feels this is an invasion of privacy?  

Of course one way around such nonsense is to use session encryption.
For instance, for telnet sessions, presuming you have the wherewithall
to (legally) install a new telnetd on the other end of the connection,
you can run the tucif SRA telnet/telnetd suite. It uses an algorithm
similar to secure RPC to exchange authentication data, and then uses
the exchanged cookies as DES keys to encrypt the session. It would
be extremely difficult for someone to snoop or 'take over' an encrypted
session in real time (recording and decoding the session later is
still possible, I suppose).

ftp://ftp.tu-chemnitz.de/pub/Local/informatik/sec_tel_ftp

Grab the libdes, gmp and tucif-sra tars.

Next message: NetSurfer: "Re: All.Net's security testing service"
Previous message: Dios: "Re: Network Monitoring and Control (announcement)"