On Thu, 2006-08-03 at 13:11 -0500, Matthew R. Dempsky wrote: > What does authpf+VPN provide in this use case that VPN alone doesn't?
I'd imagine an extra layer comprising user-based authorization. A compromised machine that can establish an IPSEC tunnel offers no checks as to who is actually gaining access. AuthPF (ideally with OTP), in this case would add that authorization. -- Ryan Corder <[EMAIL PROTECTED]> Systems Engineer, NovaSys Health LLC. 501-219-4444 ext. 646 [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
