Remote Postgres access??

[Derek Atkins]

James LewisMoss <jimdres@mindspring.com> writes:

> If you are going to go this route just use ipsec.

Unfortunately IPSec, as it exists today and certainly for the next
few years, wont provide a decent authentication scheme.  You can
get encryption, but that's all.  However, even that isn't sufficient,
because there is no way for an application to VERIFY that encryption
is being used.

Until there is an application-layer access method to IPSec status,
I would not recommend relying on IPSec for applications that require
IMHO hard-core security.

-derek

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available