Re: linux-ipsec: can this work ?!

> From: Mark Pilon <mpilon@compatible.com>
> my description of the problem/goal is:
I just joined this list last Friday, on the recommendation of Angelos, as we are having the same kind of discussion over on the Photuris list.

I wish someone had told me about this list sooner. Is there an archive of this list?

I'd really like to come up with the same API mechanisms for both Linux and BSD-derived kernels, so that applications will require the fewest changes when porting.

> -- I want to visit as few places in the stack as possible. at
Following Karn's KA9Q code direction, how hard would it be to add an SA or SPI parameter to ip output calls from the sockets?

Then, the security information would be stored in the socket structure, and could easily be duplicated on forks.

Is it possible to avoid adding anything above the sockets, that would require application changes?

WSimpson@UMich.edu

    Key fingerprint = 17 40 5E 67 15 6F 31 26 DD 0D B9 9B 6A 15 2C 32 Received on Wed May 13 11:25:55 1998

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related lists.freeswan.org Links 1998-fall 1998-spring 1998-summer 1998-winter 1999-winter announce briefs bugs design freeswan-list hipsec ietf-sectest users users-admin Request more information about Pantek