FreeS/WAN IPsec for Linux, OCLUG tutorial 2003-01-30, RGB
Next Table of Contents

FreeS/WAN vs. IPsec

  • Support only the useful subset
  • Avoid insecure algorithms, bad approaches
  • Pick one good way, don't support many bad ones

    Real security, not fake security:

  • When user asks for security, he should get security
  • If he's not getting it, that should be obvious
  • Deliver results, not a kit of parts
  • Don't provide ways for users to accidentally shoot themselves in the foot

    Title Page

    Last modified by Richard Guy Briggs , Thu Jan 30 14:19:00 EST 2003 .