projects / tinc / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Forget multicast. Always inline some function.
[tinc] / doc / SECURITY2
diff --git a/doc/SECURITY2 b/doc/SECURITY2
index 11a9ed2..9b375c2 100644 (file)
--- a/doc/SECURITY2
+++ b/doc/SECURITY2
@@ -12,7 +12,7 @@ This is the security documentation for tinc, a Virtual Private Network daemon.
    provided that the entire resulting derived work is distributed
    under the terms of a permission notice identical to this one.
 
    provided that the entire resulting derived work is distributed
    under the terms of a permission notice identical to this one.
 
-   $Id: SECURITY2,v 1.1.2.3 2002/06/21 10:11:10 guus Exp $
+   $Id: SECURITY2,v 1.1.2.4 2002/09/15 22:19:37 guus Exp $
 
 Proposed new authentication scheme
 ----------------------------------
 
 Proposed new authentication scheme
 ----------------------------------
@@ -66,17 +66,15 @@ server  CHAL_REPLY 928ffe
 After the correct challenge replies are recieved, both ends have proved
 their identity. Further information is exchanged.
 
 After the correct challenge replies are recieved, both ends have proved
 their identity. Further information is exchanged.
 
-client  ACK 655 12.23.34.45 123 0
-             |       |       |  +-> options
-            |       |       +----> estimated weight
-            |       +------------> IP address of server as seen by client
-            +--------------------> UDP port of client
-
-server  ACK 655 21.32.43.54 321 0
-             |       |       |  +-> options
-            |       |       +----> estimated weight
-            |       +------------> IP address of client as seen by server
-            +--------------------> UDP port of server
+client  ACK 655 123 0
+             |   |  +-> options
+                |   +----> estimated weight
+                +--------> listening port of client
+
+server  ACK 655 321 0
+             |   |  +-> options
+                |   +----> estimated weight
+                +--------> listening port of server
 --------------------------------------------------------------------------
 
 This new scheme has several improvements, both in efficiency and security.
 --------------------------------------------------------------------------
 
 This new scheme has several improvements, both in efficiency and security.
tinc, the VPN daemon