[Info-vax] HP's Partner Virtualization Program
Richard B. Gilbert
rgilbert88 at comcast.net
Sat Aug 15 20:37:38 EDT 2009
Michael D. Ober wrote:
> "Richard B. Gilbert" <rgilbert88 at comcast.net> wrote in message
> news:yJ-dnb4DHoqzSxvXnZ2dnUVZ_i1i4p2d at giganews.com...
>> R.A.Omond wrote:
>>> Richard B. Gilbert wrote:
>>>> [...big snip...]
>>>> In twenty years as a system manager, VMS and several flavors of
>>>> Unix, I NEVER used, or even encountered, IPSEC! We've all gotten
>>>> along without it somehow. I never missed it! Why has it suddenly
>>>> become a sine qua non?
>>>
>>> Richard, please use some of the next twenty years to learn how to snip.
>>
>> Please try to answer the question!
>>
>
>
> Richard - there are a two problems that IPSec supposedly solves.
>
> First, packets are encrypted in transit. There is a growing realization
> that packets in the clear are large enough to carry a lot of personal
> data. Credit card data, including name, address, card number, and card
> security number, for instance, can be fully stored inside the 1500 or so
> byte limit imposed by most routers. So to steal your credit card, a
> packet sniffer only needs to grab a single packet. You don't have to
> defeat security on the OS to steal credit cards. Transmission security
> is a necessary, but not sufficient requirement, for internet commerce of
> any sort. Yes, IPSec isn't the only method, but it's well understood
> and relatively easy to implement on most routers and OSs.
>
ISTR that all such transactions for the last eight or ten years have
used HTTPS. I've learned the check for the https://mumble in my
browser. Is this some form of IPSEC?
More information about the Info-vax
mailing list