From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 48C841384B4 for ; Sun, 6 Dec 2015 12:56:48 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A281621C0CB; Sun, 6 Dec 2015 12:56:39 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id 78B3321C0A8 for ; Sun, 6 Dec 2015 12:56:37 +0000 (UTC) Received: from digimed.co.uk (fenchurch.digimed.co.uk [192.168.1.6]) by mail.digimed.co.uk (Postfix) with ESMTPA id 0869C23B305 for ; Sun, 6 Dec 2015 12:56:36 +0000 (GMT) Date: Sun, 6 Dec 2015 12:56:31 +0000 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: Open RC problem? Message-ID: <20151206125631.7bfe7b56@digimed.co.uk> In-Reply-To: <201512061003.57672.michaelkintzios@gmail.com> References: <33706115.JSY9fdmmfA@wstn> <201512051849.25840.michaelkintzios@gmail.com> <20151206092451.6dcf9c2e@digimed.co.uk> <201512061003.57672.michaelkintzios@gmail.com> Organization: Digital Media Production X-Mailer: Claws Mail 3.13.0-96-gade3676 (GTK+ 2.24.28; x86_64-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; boundary="Sig_/jM8c3dfn781v1p_yP9bidnF"; protocol="application/pgp-signature" X-Archives-Salt: 78baf3b7-4326-4e4a-8c6e-414937f8374f X-Archives-Hash: c766bec0967717c8d3100c04a0661aa5 --Sig_/jM8c3dfn781v1p_yP9bidnF Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Sun, 6 Dec 2015 10:03:46 +0000, Mick wrote: > Thank you Neil! I couldn't find the FAQ page when I had a cursory look > at the beginning. This looks like a very flexible and quite secure > option for tunnelling connections, especially as they plan to implement > PFS in the near future. From what I read here I am not sure if the > initial generation of each device's keys can be controlled by the end > user, but even so zerotier still has a good security model. I don't think it can. But if you were that concerned about its security, you'd be running your own controller anyway. --=20 Neil Bothwick Voting Democrat or Republican is like choosing a cabin in the Titanic. --Sig_/jM8c3dfn781v1p_yP9bidnF Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlZkMH8ACgkQum4al0N1GQP8nACfQsVhN/rx0lOB5JzT2r0seJbS ps8AoIJBYqpY3aX9vhxPi747D1OPPPQO =a5Ho -----END PGP SIGNATURE----- --Sig_/jM8c3dfn781v1p_yP9bidnF--