Re: Singe DES encryption should be enabled

From: Dan Williams <dcbw redhat com>
To: Jon Nettleton <jon nettleton gmail com>
Cc: networkmanager-list gnome org
Subject: Re: Singe DES encryption should be enabled
Date: Thu, 22 Feb 2007 13:49:02 -0500

On Thu, 2007-02-22 at 12:18 -0500, Jon Nettleton wrote:
> On Thu, 2007-02-22 at 10:53 -0500, Dan Williams wrote:
> > On Wed, 2007-02-21 at 21:34 +0100, Olaf Telsh�r wrote:
> > > We should enable single DES encryption mode. In this
> > > case, vpnc must be called using the --enable-1des
> > > flag.
> > 
> > Are there really cases where 1des is still being used?  I'd rather that
> > it be something you have to manually enable rather than accepting 1des
> > by default.
> > 
> 
> I think we really want to expose as many of the command line options in
> the gui that we sanely can.  Make sure all our defaults are reasonable,
> but allow people to tweak if necessary.
> 
> I think following the logic of your previous comments and changing the
> vpn interface such that required goes back to being a normal panel.  We
> add a small advanced options button on the bottom left of the dialog.
> This will open a modal window organized by tabs for all the different
> options that are supported.
> 
> I will try and mock up some screenshots when I have some free time.

That would be much appreciated.

Thanks,
Dan

> Jon
> 
> > Dan
> > 
> > 
> > > According to    
> > > http://mail.gnome.org/archives/networkmanager-list/2006-September/msg00107.html
> > >      this feature should be implemented using the
> > > gconf to determing whether of not to use this flag.
> > > I would like to implement this feature, but I'm not
> > > sure where in the program to read out the gconf and to
> > > transmit the data to the calling function.
> > > My first idea was to write it in
> > > gnome/applet/applet-dbus-vpn.c, where the gconf is
> > > read already.
> > > On the other hand, this would necessitate to extend   
> > > the dbus message, which could lead to incompatibility
> > > between the networkmanager and the vpnc-daemon,
> > > couldn't it?
> > > My second idea was to read it in
> > > vpn-daemons/vpnc/src/nm-vpnc-service.c:nm_vpnc_start_vpnc_binary,
> > >    but since the gconf isn't read in this file, it
> > > would mean code duplication and that libgconf would be
> > > linked to this binary and therefor growth of the bin
> > > size.
> > > I would like to know what the developers suggest.
> > > 
> > > 
> > > 		
> > > ___________________________________________________________ 
> > > Telefonate ohne weitere Kosten vom PC zum PC: http://messenger.yahoo.de
> > > _______________________________________________
> > > NetworkManager-list mailing list
> > > NetworkManager-list gnome org
> > > http://mail.gnome.org/mailman/listinfo/networkmanager-list
> > 
> > _______________________________________________
> > NetworkManager-list mailing list
> > NetworkManager-list gnome org
> > http://mail.gnome.org/mailman/listinfo/networkmanager-list
> 
> _______________________________________________
> NetworkManager-list mailing list
> NetworkManager-list gnome org
> http://mail.gnome.org/mailman/listinfo/networkmanager-list

Follow-Ups:
- Re: Singe DES encryption should be enabled
  - From: Derek Atkins

References:
- Singe DES encryption should be enabled
  - From: =?iso-8859-1?q?Olaf=20Telsh=F6rner?=
- Re: Singe DES encryption should be enabled
  - From: Dan Williams
- Re: Singe DES encryption should be enabled
  - From: Jon Nettleton

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]