From mboxrd@z Thu Jan  1 00:00:00 1970
From: erik quanstrom <quanstro@labs.coraid.com>
Date: Thu, 28 Jul 2011 08:42:07 -0400
To: 9fans@9fans.net
Message-ID: <f70a6d16230bbd7e21c4f65b8bf7d4a7@coraid.com>
In-Reply-To: <CAL4LZyiuZjc1MipCpG8uVMKc53Oj0aeyJV7jqzCfVhv7f5qeaQ@mail.gmail.c>
References: <CAL4LZyjcj++m_mkubcQv-OuCotP45MK+EaHj+bX7Vkj6ou+BMg@mail.gmail.com>
	<alpine.OSX.2.00.1107271648280.540@haldir.orthanc.ca>
	<8a5dc7a6b3c1d2b8c8b2b401551c094d@ladd.quanstro.net>
	<CAL4LZyiuZjc1MipCpG8uVMKc53Oj0aeyJV7jqzCfVhv7f5qeaQ@mail.gmail.c>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Subject: Re: [9fans] encrypting 9P traffic
Topicbox-Message-UUID: 07dee810-ead7-11e9-9d60-3106f5b1d025

> Import defaults to unencrypted, at least for me. Import and srv
> *should* default to TLS but it's not implemented. SSL is implemented
> for import but it's not the default.

you can change the default.  i'm sure there was a performance reason to
make it not the default.  (think of the import hidden in C.)  it's probablly
not a valid reason anymore.

in fact, it would make sense to me to think about encrypting everything.
say at the level of macsec.

- erik