1995-10-23 - Re: Encrypted TCP Tunneler
Header Data
From: Enzo Michelangeli <enzo@ima.com>
To: Tatu Ylonen <ylo@cs.hut.fi>
Message Hash: 7c09efe51f7978d8665e65d9959583c685818f195dcd7f9b72b3e13b1844855b
Message ID: <Pine.LNX.3.91.951023161515.27409A-100000@ima.net>
Reply To: <199510230100.DAA00697@soikko.cs.hut.fi>
UTC Datetime: 1995-10-23 08:58:45 UTC
Raw Date: Mon, 23 Oct 95 01:58:45 PDT
Raw message
From: Enzo Michelangeli <enzo@ima.com>
Date: Mon, 23 Oct 95 01:58:45 PDT
To: Tatu Ylonen <ylo@cs.hut.fi>
Subject: Re: Encrypted TCP Tunneler
In-Reply-To: <199510230100.DAA00697@soikko.cs.hut.fi>
Message-ID: <Pine.LNX.3.91.951023161515.27409A-100000@ima.net>
MIME-Version: 1.0
Content-Type: text/plain
On Mon, 23 Oct 1995, Tatu Ylonen wrote:
> > an ETT client and an ETT server, using Diffie-Hellman and DSA for
>
> You are aware that RSADSI claims they have exclusive licensing rights
> for DSA?
Adding MD5 support wouldn't be a bad idea. Same for algorithms
alternative to Blowfish (3DES etc.) and DH (e.g., with Elliptic
functions-based key exchange), all automatically negotiated at connection
time.
> Are you familiar with ssh [http://www.cs.hut.fi/ssh]? It has many of
> the features that you are planning.
I think that Wei's idea is for something more general, similar to the
CryptoTCP 0.9 posted a few months ago by ModX and available from
ftp://utopia.hacktic.nl/pub/replay/crypto/CRYPTOapps/ctcp.0.9.tar.gz
(that one used unauthenticated DH key exchange and 3DES, IMHO with a
highly questionable PRNG for the generation of the session key).
It would be enormously more useful and popular if someone could write a
Winsock redirector loadable after WINSOCK.DLL but before any Winsock
application, hooking the API functions used to open TCP connections. That
would mean instant transport-level crypto capability for most Winsock
apps, just like NEC's SocksCap provides instant SOCKS (alas, V.4)
compliance.
Also Perry's invitation to join the IPSEC effort should be given proper
attention (I would do it, if only my spare time were not in such short
supply). I would try to implement it on SLiRP, a free SLIP/PPP simulator
largely based on BSD TCP/IP code (but running in user mode). That would
allow to experiment without having to hack the kernel, and would have a
practical value for converting conventional login accounts into
IPSEC-compliant SLIP/PPP accounts (instant crypto, again). Networking
technologies gain much faster popularity once a critical mass of users
actually use them. And to reach that mass, we must enlist all the
non-techies who just run unmodified Windows applications.
Enzo
Thread
Return to October 1995
- Return to “anon-remailer@utopia.hacktic.nl (Anonymous)”
- Return to “Enzo Michelangeli <enzo@ima.com>”
- Return to “Eric Young <eay@mincom.oz.au>”
- Return to “Hal <hfinney@shell.portal.com>”
- Return to “Mark <mark@lochard.com.au>”
- Return to ““Perry E. Metzger” <perry@piermont.com>”
- Return to “sameer <sameer@c2.org>”
- Return to “someone <zxmjn11@here.or.there>”
- Return to “Tatu Ylonen <ylo@cs.hut.fi>”
Return to “Wei Dai <weidai@eskimo.com>”
- 1995-10-21 (Sat, 21 Oct 95 15:18:21 PDT) - Encrypted TCP Tunneler - Wei Dai <weidai@eskimo.com>
- 1995-10-22 (Sat, 21 Oct 95 18:03:58 PDT) - Re: Encrypted TCP Tunneler - Hal <hfinney@shell.portal.com>
- 1995-10-22 (Sat, 21 Oct 95 19:33:33 PDT) - Re: Encrypted TCP Tunneler - Mark <mark@lochard.com.au>
- 1995-10-22 (Sat, 21 Oct 95 20:54:59 PDT) - Re: Encrypted TCP Tunneler - sameer <sameer@c2.org>
- 1995-10-22 (Sat, 21 Oct 95 23:33:14 PDT) - Re: Encrypted TCP Tunneler - Mark <mark@lochard.com.au>
- 1995-10-22 (Sun, 22 Oct 95 00:45:39 PDT) - Re: Encrypted TCP Tunneler - sameer <sameer@c2.org>
- 1995-10-22 (Sat, 21 Oct 95 23:33:14 PDT) - Re: Encrypted TCP Tunneler - Mark <mark@lochard.com.au>
- 1995-10-22 (Sat, 21 Oct 95 20:54:59 PDT) - Re: Encrypted TCP Tunneler - sameer <sameer@c2.org>
- 1995-10-22 (Sun, 22 Oct 95 00:29:35 PDT) - Re: Encrypted TCP Tunneler - Wei Dai <weidai@eskimo.com>
- 1995-10-22 (Sat, 21 Oct 95 19:33:33 PDT) - Re: Encrypted TCP Tunneler - Mark <mark@lochard.com.au>
- 1995-10-22 (Sun, 22 Oct 95 10:03:45 PDT) - Re: Encrypted TCP Tunneler - “Perry E. Metzger” <perry@piermont.com>
- 1995-10-22 (Sun, 22 Oct 95 16:49:15 PDT) - Re: Encrypted TCP Tunneler - Tatu Ylonen <ylo@cs.hut.fi>
- 1995-10-23 (Mon, 23 Oct 95 01:58:45 PDT) - Re: Encrypted TCP Tunneler - Enzo Michelangeli <enzo@ima.com>
- 1995-10-23 (Mon, 23 Oct 95 02:33:59 PDT) - Re: Encrypted TCP Tunneler - Eric Young <eay@mincom.oz.au>
- 1995-10-23 (Mon, 23 Oct 95 02:53:19 PDT) - Re: Encrypted TCP Tunneler - Wei Dai <weidai@eskimo.com>
- 1995-10-24 (Tue, 24 Oct 95 09:13:40 PDT) - Re: Encrypted TCP Tunneler - Tatu Ylonen <ylo@cs.hut.fi>
- 1995-10-28 (Sat, 28 Oct 1995 09:47:24 +0800) - Re: Encrypted TCP Tunneler - someone <zxmjn11@here.or.there>
- 1995-10-23 (Mon, 23 Oct 95 01:58:45 PDT) - Re: Encrypted TCP Tunneler - Enzo Michelangeli <enzo@ima.com>
- 1995-10-23 (Mon, 23 Oct 95 15:24:02 PDT) - Re: Encrypted TCP Tunneler - anon-remailer@utopia.hacktic.nl (Anonymous)
- 1995-10-22 (Sat, 21 Oct 95 18:03:58 PDT) - Re: Encrypted TCP Tunneler - Hal <hfinney@shell.portal.com>