Re: remote kernel debugging over a network

To: tech-kern%NetBSD.org@localhost
Subject: Re: remote kernel debugging over a network
From: Thor Lancelot Simon <tls%panix.com@localhost>
Date: Sat, 5 Jun 2010 20:25:16 -0400

On Sun, Jun 06, 2010 at 12:47:36AM +0200, Joerg Sonnenberger wrote:
> On Sat, Jun 05, 2010 at 05:57:55PM -0400, Thor Lancelot Simon wrote:
> > IPKDB used a custom MD5-based packet hash for "security".  I actually
> > think it would probably be very easy to support a single IPsec ESP
> > security association instead.  The hair with IPsec is all with key
> > negotiation.  Don't bother, and don't do some things like replay
> > protection, and ESP is a very simple, compact little shim layer on IP.
> 
> If you want to secure the link, having a fixed AES key and including a
> SHA1 hash would provide most of the security with very little
> complexity.

That's exactly what I just said.

-- 
Thor Lancelot Simon                                    
tls%rek.tjls.com@localhost
  "All of my opinions are consistent, but I cannot present them all
   at once."    -Jean-Jacques Rousseau, On The Social Contract

References:
- remote kernel debugging over a network
  - From: Jordan Gordeev
- Re: remote kernel debugging over a network
  - From: der Mouse
- Re: remote kernel debugging over a network
  - From: Bakul Shah
- Re: remote kernel debugging over a network
  - From: Thor Lancelot Simon
- Re: remote kernel debugging over a network
  - From: Joerg Sonnenberger

Prev by Date: Re: remote kernel debugging over a network
Next by Date: MI commpage?
Previous by Thread: Re: remote kernel debugging over a network
Next by Thread: Re: remote kernel debugging over a network
Indexes:

Home | Main Index | Thread Index | Old Index