[erlang-questions] re crappy security (RE: Erlang presentation slides)
Kirill Zaborski
qrilka@REDACTED
Thu Jun 7 11:30:27 CEST 2007
But what about connection speed. Will IPSec be much quicker than SSL
or with a decent connection it doesn't really matter for common Erlang
applications?
Has anyone done some measurements?
Regards,
Kirill.
On 6/7/07, Ulf Wiger (TN/EAB) <ulf.wiger@REDACTED> wrote:
> I didn't mention running distributed Erlang
> over ssl, since I was under the impression that
> it's not officially supported, but perhaps it is?
>
> BR,
> Ulf W
>
> > -----Original Message-----
> > From: Fredrik Thulin [mailto:ft@REDACTED]
> > Sent: den 7 juni 2007 10:17
> > To: Ulf Wiger (TN/EAB)
> > Cc: Toby DiPasquale; erlang-questions@REDACTED
> > Subject: Re: [erlang-questions] re crappy security (RE:
> > Erlang presentation slides)
> >
> > Ulf Wiger (TN/EAB) wrote:
> > >
> > > Just one comment,
> > >
> > > It is often highlighted that Erlang's cookie-based security
> > model is
> > > not suitable for open networks (this is true), but it's not often
> > > mentioned how easy it is to roll your own rpc on top of
> > just about any
> > > transport protocol.
> >
> > What's so crappy with shared secret if you use -proto_dist inet_ssl?
> >
> > Or is the crap that you can execute arbitrary code on remote
> > nodes, given that you know the shared secret? This I would
> > agree with, I think... It's a two edged sword.
> >
> > /Fredrik
> >
> >
> _______________________________________________
> erlang-questions mailing list
> erlang-questions@REDACTED
> http://www.erlang.org/mailman/listinfo/erlang-questions
>
More information about the erlang-questions
mailing list