Re: Big VPN

To: debian-security@lists.debian.org
Cc: tinc@nl.linux.org
Subject: Re: Big VPN
From: "I.R. van Dongen" <vdongen@hetisw.nl>
Date: Wed, 03 Mar 2004 00:18:32 +0100
Message-id: <[🔎] 40451648.3060700@hetisw.nl>
Reply-to: vdongen@hetisw.nl
In-reply-to: <[🔎] 20040302215728.GB12231@nenya.lan>
References: <[🔎] 1078260094.1147.25.camel@tower.int-srv.pl> <[🔎] 4044F60A.5060906@hetisw.nl> <[🔎] 20040302215728.GB12231@nenya.lan>

Richard Atterer wrote:

On Tue, Mar 02, 2004 at 10:00:58PM +0100, I.R. van Dongen wrote:

You might want to check tinc (http://tinc.nl.linux.org)

I strongly recommend *not* to use tinc.<http://www.securityfocus.com/archive/1/249142> illustrates that the

authors didn't have enough expertise to build a secure tool 2 years ago.
The problems were still present last autumn, see
<http://www.mit.edu:8008/bloom-picayune/crypto/14238>. What a track record!

With VPN software, IPSec is the only real option if you want to be certain
it is secure.

Nice, the first article is based on a alpha version (pre-beta) of tinc,you didn't include the official answer.


This sounds alot like FUD, are you the author of a compeditive product?

Gr,

Ivo

PS. cc: to tinc mailinglist

Reply to:

Follow-Ups:
- Re: Big VPN
  - From: Jan Minar <jjminar@fastmail.fm>
- Re: Big VPN
  - From: Luca Filipozzi <lfilipoz@debian.org>

References:
- Big VPN
  - From: Jaroslaw Tabor <jarek@srv.pl>
- Re: Big VPN
  - From: "I.R. van Dongen" <vdongen@hetisw.nl>
- Re: Big VPN
  - From: Richard Atterer <richard@list04.atterer.net>

Prev by Date: Re: Big VPN
Next by Date: Re: Big VPN
Previous by thread: Re: Big VPN
Next by thread: Re: Big VPN
Index(es):
- Date
- Thread