| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <432BC206.20102@rtij.nl> Date: Sat Sep 17 16:53:33 2005 From: m at rtij.nl (Martijn Lievaart) Subject: PGPNet Upgrade path ? Aditya Deshmukh wrote: >>>What alternatives are there to pgpnet ? >>> >>> >>Have a look at OpenVPN. >> >> > >Thanks Martijn, but isn`t that a SSL vpn ? And from what I >have read about PGPnet I need a IPSEC VPN that uses >PGP keys to do the auth. > > It's real VPN based on SSL technoligy, but not a WebSSL VPN. It's more like IpSec than like a WebVPN in that it creates true network paths, not virtual ones in a browser. >I know for ipsec VPNs I could use the winxp's builtin >But that would require moving all the PGP keys to >X.509 certs. > > > Yes, absolutely. For OpenVPN you need to use X509 certs, you will have to rework your whole PKI. However: * It's is free * It's is safe (an audit of most opensource vpn solutions clearly showed OpenVPN to be both well designed as well as well implemented) * It's a snap to set up, contrary to IpSec (provided you have openssl somewhere to generate the needed PKI) * It can be used as a service or a user program on Windows. So if you consider dropping PGP all together, have a look at OpenVPN. M4
Powered by blists - more mailing lists