[Security] client-to-client security :: Summary and todo's

Dirk Meyer dmeyer at tzi.de
Sat Aug 23 13:37:58 CDT 2008


Dirk Meyer wrote:
> Pavel Simerda wrote:
>> On Sat, 23 Aug 2008 18:21:38 +0200
>> Dirk Meyer <dmeyer at tzi.de> wrote:
>>> UPnP is a working choice, but bad. Just google for it.
>>
>> I know what UPnP is.
>
> I mean: google why it is a bad choice :) See below

This is a good doc:
http://www.gnucitizen.org/blog/hacking-the-interwebs/

Automatic access to something without password is a very bad
idea. That is why I want certificates for all my bots. I would have no
problem with a bot on my router opening ports for other bots that have
a valid certificate.


Dirk

-- 
I feel like a genocidal maniac when emacs asks me if I want to kill
10789 characters.


More information about the Security mailing list