Re: [btns] Suggestion for Better-Than-Nothing Security (btns)

Stephen Kent <> Tue, 09 June 2009 13:00 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 3D4CA3A6C8A for <>; Tue, 9 Jun 2009 06:00:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id UUucU5kCnQ0M for <>; Tue, 9 Jun 2009 06:00:08 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id AD5F43A6B2F for <>; Tue, 9 Jun 2009 06:00:08 -0700 (PDT)
Received: from ([] helo=[]) by with esmtp (Exim 4.63) (envelope-from <>) id 1ME0vz-0003Mm-B8; Tue, 09 Jun 2009 09:00:13 -0400
Mime-Version: 1.0
Message-Id: <p06240813c6540b323700@[]>
In-Reply-To: <>
References: <>
X-Priority: 1 (Highest)
Date: Tue, 9 Jun 2009 08:53:36 -0400
To: "tim robertson" <>
From: Stephen Kent <>
Content-Type: multipart/alternative; boundary="============_-967570084==_ma============"
Subject: Re: [btns] Suggestion for Better-Than-Nothing Security (btns)
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Better-Than-Nothing-Security Working Group discussion list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 09 Jun 2009 13:00:10 -0000

At 12:07 AM -0500 5/28/09, tim robertson wrote:
>Hi, I have a suggestion for Better-Than-Nothing Security (btns). 
>IPSEC should integrate some more encryption features like Obfuscated 
>TCP( and you should work with 
>Microsoft/Linux to get them to release a high priority windowsupdate 
>for all windows xp/vista/server operating systems so everyone can 
>install it. Same thing for Linux too. Then IPSEC should be enabled 
>by default for Windows xp/vista/server and Linux.
>Can you pass on my suggestion?
>Be Yourself @!
>Choose From 200+ Email Addresses
>Get a Free Account at <>!

IPsec is IPsec. It is not a package of software libraries like Open 
SSL.  So, it makes no sense to suggest adding Obfuscated TCP to IPsec.

IPsec has been available in Windows, Linux, and Mac OS X for several years.

Because IPsec (not the BTNS variant) requires access controls and an 
authentication capability, it is not generally feasible to speak of 
it being enabled by default.