home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
kermit.columbia.edu
/
kermit.columbia.edu.tar
/
kermit.columbia.edu
/
newsgroups
/
misc.20010306-20010921
/
000015_news@columbia.edu _Sun Mar 11 23:21:19 2001.msg
< prev
next >
Wrap
Internet Message Format
|
2001-09-20
|
2KB
Return-Path: <news@columbia.edu>
Received: from newsmaster.cc.columbia.edu (newsmaster.cc.columbia.edu [128.59.59.30])
by uhaligani.cc.columbia.edu (8.9.3/8.9.3) with ESMTP id XAA29945
for <kermit.misc@cpunix.cc.columbia.edu>; Sun, 11 Mar 2001 23:21:18 -0500 (EST)
Received: (from news@localhost)
by newsmaster.cc.columbia.edu (8.9.3/8.9.3) id WAA25087
for kermit.misc@watsun.cc.columbia.edu; Sun, 11 Mar 2001 22:57:49 -0500 (EST)
X-Authentication-Warning: newsmaster.cc.columbia.edu: news set sender to <news> using -f
From: jaltman@columbia.edu (Jeffrey Altman)
Subject: Re: secure ftp batch binaries/scripts
Date: 12 Mar 2001 03:57:49 GMT
Organization: Columbia University
Message-ID: <98hhft$ofs$1@newsmaster.cc.columbia.edu>
To: kermit.misc@columbia.edu
In article <98he0m$5d8$1@yin.interaccess.com>,
Kenny McCormack <gazelle@interaccess.com> wrote:
:
: This is very interesting. Normally, I am a little sceptical of these
: frequent "Kermit can do anything" posts, but this one is very intriguing
: because it looks pretty much "ready to go". SSH (the other main contender)
: has always looked really complicated to setup - along with the "You can't
: really get binaries for it, you have to get /dev/(r)random, you have to deal
: with export restrictions, you have to deal with the RSA patent, etc, etc, etc"
: bulls**t.
:
: So, convince me. Is it really straightforward to do it with Kermit?
All of the issues with /dev/random, export issues, patents are the same.
You can't avoid them regardless of which security protocols you want to use.
As for your issues:
. A source of random data is required for any secure connections because
otherwise your session keys are guessable
. The RSA patent is expired and is no longer a restriction
. Export rules on open source products such as C-Kermit no longer
restrict their exportation from the U.S. in source code form.
. Exportation of binaries may or may not be permissible without an exemption.
Jeffrey Altman * Sr.Software Designer C-Kermit 7.1 Alpha available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Kerberos, SRP, and
kermit-support@kermit-project.org OpenSSL. SSH soon to follow.