Full Disclosure mailing list archives
Re: PGPNet Upgrade path ?
From: Martijn Lievaart <m () rtij nl>
Date: Sat, 17 Sep 2005 09:13:10 +0200
Aditya Deshmukh wrote:
What alternatives are there to pgpnet ?Have a look at OpenVPN.Thanks Martijn, but isn`t that a SSL vpn ? And from what I have read about PGPnet I need a IPSEC VPN that uses PGP keys to do the auth.
It's real VPN based on SSL technoligy, but not a WebSSL VPN. It's more like IpSec than like a WebVPN in that it creates true network paths, not virtual ones in a browser.
I know for ipsec VPNs I could use the winxp's builtin But that would require moving all the PGP keys to X.509 certs.
Yes, absolutely. For OpenVPN you need to use X509 certs, you will have to rework your whole PKI. However:
* It's is free* It's is safe (an audit of most opensource vpn solutions clearly showed OpenVPN to be both well designed as well as well implemented) * It's a snap to set up, contrary to IpSec (provided you have openssl somewhere to generate the needed PKI)
* It can be used as a service or a user program on Windows. So if you consider dropping PGP all together, have a look at OpenVPN. M4 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- PGPNet Upgrade path ? Aditya Deshmukh (Sep 13)
- Re: PGPNet Upgrade path ? Martijn Lievaart (Sep 16)
- RE: PGPNet Upgrade path ? Aditya Deshmukh (Sep 16)
- RE: PGPNet Upgrade path ? Gary E. Miller (Sep 16)
- Re: PGPNet Upgrade path ? Martijn Lievaart (Sep 17)
- RE: PGPNet Upgrade path ? Aditya Deshmukh (Sep 17)
- RE: PGPNet Upgrade path ? Martijn Lievaart (Sep 23)
- RE: PGPNet Upgrade path ? Aditya Deshmukh (Sep 16)
- Re: PGPNet Upgrade path ? Martijn Lievaart (Sep 16)