/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to intro.xml

  • Committer: Teddy Hogeborn
  • Date: 2014-10-05 19:39:25 UTC
  • mto: (237.7.304 trunk)
  • mto: This revision was merged to the branch mainline in revision 323.
  • Revision ID: teddy@recompile.se-20141005193925-jjqx2n2dt3icy28u
* mandos.service ([Unit]/Documentation): New.

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
1
<?xml version="1.0" encoding="UTF-8"?>
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
 
<!ENTITY TIMESTAMP "2015-03-08">
 
4
<!ENTITY TIMESTAMP "2014-06-22">
5
5
<!ENTITY % common SYSTEM "common.ent">
6
6
%common;
7
7
]>
197
197
      </para>
198
198
    </refsect2>
199
199
    
200
 
    <refsect2 id="sniff">
201
 
      <title>How about sniffing the network traffic and decrypting it
202
 
      later by physically grabbing the Mandos client and using its
203
 
      key?</title>
204
 
      <para>
205
 
        We only use <acronym>PFS</acronym> (Perfect Forward Security)
206
 
        key exchange algorithms in TLS, which protects against this.
207
 
      </para>
208
 
    </refsect2>
209
 
    
210
200
    <refsect2 id="physgrab">
211
201
      <title>Physically grabbing the Mandos server computer?</title>
212
202
      <para>