Re: Telnet encryption

Philippe-Andre Prindeville <philipp@res.enst.fr> Fri, 09 February 1996 07:02 UTC

Received: from ietf.nri.reston.va.us by IETF.CNRI.Reston.VA.US id aa06906; 9 Feb 96 2:02 EST
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa06902; 9 Feb 96 2:02 EST
Received: from timbuk.cray.com by CNRI.Reston.VA.US id aa02343; 9 Feb 96 2:02 EST
Received: from ironwood.cray.com (daemon@ironwood-fddi.cray.com [128.162.21.36]) by timbuk.cray.com (8.6.12/CRI-gate-8-2.11) with ESMTP id BAA18685; Fri, 9 Feb 1996 01:00:22 -0600
Received: (from daemon@localhost) by ironwood.cray.com (8.6.12/CRI-ccm_serv-8-2.8) id AAA07700 for telnet-ietf_list@sdiv; Fri, 9 Feb 1996 00:58:41 -0600
Received: from timbuk.cray.com (root@timbuk [128.162.19.7]) by ironwood.cray.com (8.6.12/CRI-ccm_serv-8-2.8) with ESMTP id AAA07697 for <telnet-ietf@sdiv.cray.com>; Fri, 9 Feb 1996 00:58:40 -0600
Received: from enst.enst.fr (u6mwvVPuouo+gk/fXPc/+yUmLGJyvhNN@enst.enst.fr [137.194.2.16]) by timbuk.cray.com (8.6.12/CRI-gate-8-2.11) with ESMTP id AAA18492 for <telnet-ietf@timbuk.cray.com>; Fri, 9 Feb 1996 00:58:37 -0600
Received: from jones.res.enst.fr (jones.res.enst.fr [137.194.192.21]) by enst.enst.fr (8.6.10/8.6.10) with SMTP id HAA15740; Fri, 9 Feb 1996 07:58:27 +0100
Received: by jones.res.enst.fr (1.37.109.4/16.2) id AA01102; Fri, 9 Feb 96 07:58:25 +0100
Date: Fri, 9 Feb 96 07:58:25 +0100
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: Philippe-Andre Prindeville <philipp@res.enst.fr>
Message-Id: <9602090758.ZM1100@jones.res.enst.fr>
In-Reply-To: "Richard Basch" <basch@lehman.com> "Telnet encryption" (Feb 8, 12:31)
References: <199602090223.VAA06128@badger.lehman.com>
Organization: Ecole Nationale Superieure des Telecommunications, Paris, France
Address: Departement Reseaux 46, rue Barrault 75634 Paris Cedex 13 France
Telephone: +33(1) 45.81.73.14 Fax: +33(1) 44.16.70.20
X-Face: >4WM/$ED&E'4zy#c4]"b5^50kZ9W\o}W+e>qU0!; ~b|q/.dFb}M4JKOu_gIL[`Zb!=\(t<$ ZoARNta[Qx:";t-A0-l$=tBB=bPzZpsUnUQ*8ZPHUV<GA1eqB<H~4]}+[v|G1M<2j9Dr+u} po*F``aQzl"_rtwP5l`GKH}aHuh4=%U/JGO.HeYDoR.#?+iS0{'iglw`6|4T[rWVz*=0i(
X-Mailer: Z-Mail (3.2.0 16aug94)
To: Richard Basch <basch@lehman.com>
Subject: Re: Telnet encryption
Cc: telnet-ietf@timbuk.cray.com
MMDF-Warning: Parse error in original version of preceding line at CNRI.Reston.VA.US
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii

Excuse me here... I'm a telnet hack and not a cryptologist...

How about having a mechanism whereby two machines that have
previously not communicated and are not under the same
administrative umbrella can communicate securely with each
other?  Say, DES with Diffie-Hillman key exchange?

I see it as two different problems also.  That the remote
machine relies on a weak authentication mechanism such as
the UNIX password file is a separate problem to be solved
elsewhere.  My gripe is that I don't want my password going
in cleartext over the network, and not everyone does S/Key.

Why can't we focus our attention on this?

If Jeff is watching this he will probably flame me for being
naive.  He may be right...

-Philip