From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <004b01c40813$bb9261b0$df756f51@ntlworld.com> From: "Steve Simon" To: <9fans@cse.psu.edu> References: <76cc93f6db46e7ad7bd84bceb250ba14@collyer.net> Subject: Re: [9fans] cryptographic signatures & factotum MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Date: Fri, 12 Mar 2004 09:23:50 +0000 Topicbox-Message-UUID: 2c9b43ce-eacd-11e9-9e20-41e7f4b1d025 Hi, Thanks to all who replied. I realised I didn't say why I want to do this. At work my plan9 system is very carefully screened behind a firewall. The only way I can make somthing happen on it is either cron or emai (via pipeto). My idea was to send just a plaintext email that contains two attachements. One being an rc script and the other an authenticating signature for that command. I think this is secure enough as the signature (hash) would need a shared secret to be validated. The idea of hashing a sequence count is interesting but in the context of email as a transport (and our unreliable pop3 server) I am wary of going down this route. The real questions are: Should I attempt to add a non-standard (not PGP) signature verification algorithm to factotum? Or, should I just do a quick bodge and not worry, because no-one else would ever want such a thing? Another question: At home my plan9 system is straight onto broadband but I believe it's secure - it only listens on the cpu and exportfs, am I being naieve (again :-), tell me I don't need to buy a firewall... -Steve