RE: Ethernet layer 2 or 1 encryption

From: Jason Stone (jason@shalott.net)
Date: 05/31/02

• Next message: Well Educated: "typo in FreeBSD-SA-02:27.rc"
• Previous message: Øystein Andreassen: "RE: Ethernet layer 2 or 1 encryption"
• In reply to: Øystein Andreassen: "RE: Ethernet layer 2 or 1 encryption"
• Next in thread: Bruce M Simpson: "Re: Ethernet layer 2 or 1 encryption"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 31 May 2002 02:42:49 -0700 (PDT)
From: Jason Stone <jason@shalott.net>
To: Øystein Andreassen <oystein.andreassen@systec.no>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> What about fiber? It's not encrypted, I know, but is's not possible to
> eavsdrop ither (I think:)...

Actually, you can, in fact sniff fibre. Additionally, if you have
physical access anyway, you can be a literal man-in-the-middle, bridging
all traffic and keeping a copy for yourself.

You could probably do something with the tun(4) device. And there's
probablly some l2tp software in ports/net that would fit your needs (tund,
vtun). l2tp would have higher latency and overhead then just encrypting
ethernet payloads, but it has the advantage of being already available.

 -Jason

 -----------------------------------------------------------------------
 I worry about my child and the Internet all the time, even though she's
 too young to have logged on yet. Here's what I worry about. I worry
 that 10 or 15 years from now, she will come to me and say "Daddy, where
 were you when they took freedom of the press away from the Internet?"
        -- Mike Godwin

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: See https://private.idealab.com/public/jason/jason.gpg

iD8DBQE890WaswXMWWtptckRAiPbAKDABp8cdDODFlyQq7Z7K13bvsvDoACgqk6E
Qu4UmqGSe+AP1SJroLBvfl8=
=C0gU
-----END PGP SIGNATURE-----

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

---

• Next message: Well Educated: "typo in FreeBSD-SA-02:27.rc"
• Previous message: Øystein Andreassen: "RE: Ethernet layer 2 or 1 encryption"
• In reply to: Øystein Andreassen: "RE: Ethernet layer 2 or 1 encryption"
• Next in thread: Bruce M Simpson: "Re: Ethernet layer 2 or 1 encryption"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip ... You want a snapshot kernel supporting all that, ... I worry about my child and the Internet all the time, ... Here's what I worry about. ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Third /tmp location ? (and maybe a fourth too) ... >> preferred over single partition schemes. ... I worry about my child and the Internet all the time, ... Here's what I worry about. ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Default ssh protocol in -STABLE [was: HEADS UP: FreeBSD-STABLE now has OpenSSH 3.4p1] ... > not the ssh2 DSA host key. ... I worry about my child and the Internet all the time, ... Here's what I worry about. ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: DNS Question ... chroot to communicate with a daemon outside the chroot, ... I worry about my child and the Internet all the time, ... Here's what I worry about. ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) Re: Spammers forged my address - help unbury me from bounces? ... then I get bounce messages from my own mailserver ... Vice President Of Customer Service (And System Administrator) ... I worry about my child and the Internet all the time, ... Here's what I worry about. ... (freebsd-questions)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2002-05