[CentOS] establish a 128 bit encrypted tunnel between centos 5.2 boxes

Rob Townley rob.townley at gmail.com
Thu Aug 28 04:05:47 UTC 2008


On Tue, Aug 26, 2008 at 5:55 PM, Robert Moskowitz <rgm at htt-consult.com>wrote:

> Jeff Kinz wrote:
>
>> On Tue, Aug 26, 2008 at 04:04:21PM -0400, Jerry Geis wrote:
>>
>>
>>> Is there an easy way or anyway to establish a 128 bit encrypted tunnel
>>> between a handful of centos 5.2 boxes?
>>>
>>>
>>
>> In addition the rest of the good info others already posted for you,
>> please remember that "128 bit encryption" doesn't mean anything unless you
>> also specify the encryption scheme being used.
>>
>> A 128 bit encryption scheme may or may not be easily broken depending on
>> which one it is. (Pick a good!)
>>
> Actually 'we' (crypto community) talk about crypto-suites, as you have to
> look at all the pieces involved. If everything is not disclosed (like with
> Skype), then you just don't know where the weakness may be.
>
> SSH, IPsec (watch out for the 'Null' cipher :) ), TLS (some of the suites
> are too weak to talk about), and HIP are all well-rounded security
> protocols. I have worked on all of them.
>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>



i would look into the HIP stuff.  But also look at the Hamachi like
solutions such as EOIP  - Ethernet Over IP (built into dd-wrt) and tinc-vpn.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.centos.org/pipermail/centos/attachments/20080827/76e39911/attachment.htm


More information about the CentOS mailing list