In article <[EMAIL PROTECTED]>, Steve Kostecke <[EMAIL PROTECTED]> wrote:
> Using SSL keeps clear-text passwords off the wire. Given that, for most of the network, doing an OSI layer 1 passive tap requires specialist hardware (and in some cases may be almost impossible), whereas doing a layer 4 active tap can be done with standard hardware and slightly tweaked software, that sounds like a false sense of security to me. (In fact, with a little bit of social engineering, of the phishing variety, the layer 4 tap can be done on a standard PC anywhere in the world.) Without authentication, there is nothing preventing a layer 4 upwards active tap, by anyone who can gain physical access anywhere on the path, or can social engineer you. _______________________________________________ questions mailing list [email protected] https://lists.ntp.isc.org/mailman/listinfo/questions
