FreeS/WAN IPSec for Linux, AOC-Ottawa 2002-01-24, RGB
Next Table of Contents

FreeS/WAN vs. IPSec

  • Support only the useful subset
  • Avoid insecure algorithms, bad approaches
  • Pick one good way, don't support many bad ones

    Real security, not fake security:

  • When user asks for security, he should get security
  • If he's not getting it, that should be obvious
  • Deliver results, not a kit of parts
  • Don't provide ways for users to accidentally shoot themselves in the foot

    Title Page


    Last modified by Richard Guy Briggs , Thu Jan 24 11:06:28 EST 2002 .