Re: Secure RPC NFS client & server is available.

Theodore Ts'o (tytso@mit.edu)
Thu, 29 Feb 1996 18:33:43 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Phillip: "Re: LILO problems"
Previous message: Russ Berry: "Compiling 1.3.69"

Please be aware that Secure RPC is not really secure. It'll stop most
high-school students, since (I don't think) anyone is distributing a
toolkit to break Secure RPC. However, the 192 bit Diffie-Hellman
modulus used by Secure RPC was broken approximately 10 years ago, by
LaMacchia, et. al. In general, Diffie-Hellman moduli should be at least
512, and preferably 1024 bits long. 192 bits is way too short.

That shouldn't stop people from using Secure RPC, since it is better
than nothin. It is also useful if you wish to be compatible with SunOS
or Solaris. But please be aware that it's not "truly" secure.

- Ted

Next message: Phillip: "Re: LILO problems"
Previous message: Russ Berry: "Compiling 1.3.69"