On Tue, 19 Dec 2000, Kurt Seifried wrote:
> They help, and are certainly a bit better then
> plaintext alternatives like telnet but they aren't perfect either.
>
Actually, a whole heck of a lot better seems to be more apt than "a bit
better". With the right user knowledge it is almost foolproof, and even
without the right knowledge the chances that someone will be able to get
the information is quite remote.
Secondly, saying they are not perfect is true of every security system in
the world. In the realm of cryptography, there is no such thing as the
perfect solution. In fact, the definition of cryptography states that
everything can be broken at a certain cost.
[SARCASM ON]
Why not propose the perfect solution? Lets get rid of any network. If I
want to buy from Amazon, I'll just fly to one of thier stand alone
machines, and make my purchase. An attendant can come by after I'm done,
get the information and process my order.
[SARCASM OFF]
If you acknowledge that no system is perfect, then the best alternative is
to use the best security available, or abondon use of the network
altogether. I know which one I'll pick.
Jeff
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
