On Sun, 15 Oct 2006, Dawid Ciezarkiewicz wrote: > Hi, > I'd be thankful for your opinions about that idea. Please forgive me any > nuances that I didn't know about.
This limits the system to only talking to one other system on the same link. I guess you could have per-MAC keys and associate the crypto info with neighbor cache entries. Likely need a cryptographer to review the protocol -- blindly using the first block of every encrypted packet as the IV smells problematic, for example. - James -- James Morris <[EMAIL PROTECTED]> - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
