Peter Stamfest wrote:
>
> * IPSec is hard to configure
But please give us a reason why you believe that the configuration
of "your solution" would be easier. Yes, it's somewhat more
complicated than starting setup.exe and just click a "Next" button
if it's meant to be really secure.
> The main problem is the availablility of a free windows client that does
> all I want.
Therefore it might be more promising if you just sit down and
implement an IPSec client for Windows fulfilling your requirements
and contribute X.509 cert based authentication to FreeS/WAN than
asking here for a new VPN project from scratch.
> The client would not be hard to write, actually. It mainly consists of a
> virtual modem driver and an application level service.
Well, then go for it.
I don't want to bother you but at this point I doubt that you have
enough knowledge of designing secure crypto protocols and practical
experience with current crypto implementations. It's up to you to
prove the opposite by presenting a concrete design paper and go
through the discussion about it.
Ciao, Michael.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
