ad hoc IPsec or similiar
Sandy Harris
sandyinchina at gmail.com
Fri Jun 22 11:52:13 EDT 2007
On 6/22/07, Eugen Leitl <eugen at leitl.org> wrote:
> So what's the state in ad hoc IPsec/VPN setup for any end points?
The Linux FreeS/WAN project was working on "opportunistic encryption".
The general idea is that if you use keys in DNS to authenticate gateways
and IPsec for secure tunnels then any two machines can communicate
securely without their administrators needing to talk to each other or to
set up specific pre-arranged tunnels.
http://www.freeswan.org/freeswan_trees/freeswan-2.00/doc/glossary.html#carpediem
http://www.freeswan.org/freeswan_trees/freeswan-2.00/doc/quickstart.html
There is an RFC based on that work:
ftp://ftp.rfc-editor.org/in-notes/rfc4322.txt
The FreeS/WAN project has ended. I do no know if the follow-on projects,
openswan.org and strongswan.org, support OE.
--
Sandy Harris
Quanzhou, Fujian, China
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list