Fri Feb 14 17:03:00 2003
"Joseph E. Mainusch" wrote:
> > It is _extremely_ unlikely to invent and
> > to implement something even remotely secure as openssh (which is not
> > bulletproof) in one year, as a plugin for vnc.
> ...which is why I would employ standard protocols for these things.
> i.e. RSA, SHA, AES. That's why they exist.
> SSH utilizes the standard protocols I've mentioned (among others). Why
> not use them as well? You don't need to pull the entire functionality of
> SSH into VNC in order to do this.
Yes, and therein lies the problem - do you know enough about
SSH or the "standard protocols" [they're algorithms] to know
which bits to pull out, and how to implement them securely?
Most encryption is broken in the implementation, not the algorithm.
Illtud Daniel firstname.lastname@example.org
Uwch Ddadansoddwr Systemau Senior Systems Analyst
Llyfrgell Genedlaethol Cymru National Library of Wales
Yn siarad drosof fy hun, nid LlGC - Speaking personally, not for NLW