From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <3F4A0CBB.9020306@plan9.bell-labs.com>
From: Russ Cox <rsc@plan9.bell-labs.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.5b) Gecko/20030723 Thunderbird/0.1
MIME-Version: 1.0
To: 9fans@cse.psu.edu
Subject: Re: [9fans] NAT'ing a drawterm connection
References: <Pine.LNX.4.44.0308242324350.3501-100000@fbsd.cpsc.ucalgary.ca> <002e01c36b05$68bc5f50$c901a8c0@cc77109e>
In-Reply-To: <002e01c36b05$68bc5f50$c901a8c0@cc77109e>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Date: Mon, 25 Aug 2003 09:18:51 -0400
Topicbox-Message-UUID: 21334f82-eacc-11e9-9e20-41e7f4b1d025

Bruce Ellis wrote:

>maybe you guys drawterming over open networks should consider
>the security of running a cleartext 9p connection over such a connection.
>that's what you are doing.  a simple sniff can copy your key strokes ...
>the auth is secure but the connection is cleartext.  type away.
>
>

No, the connection is SSL encrypted using the key established by the auth.

Russ