Re: Announce: initrd-tftp 0.1

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Sun Jan 09 2000 - 20:09:27 EST

Next message: Keith Owens: "Re: [2.3.28] ISA PnP segfault"
Previous message: Brendan Miller: "Q: keyboard: Too many NACKs -- noisy kbd cable?"
In reply to: Hans de Goede: "Re: Announce: initrd-tftp 0.1"
Next in thread: Jamie Lokier: "Re: Announce: initrd-tftp 0.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Problems:
> -bootp, how do I know the server is THE server

You don't

> As said any smart suggestions welcome, if possible I would like to keep
> the bootrom used to get the kernel intact ;|

Ah.. that is where the problem starts. You need some kind of crypto to authenticate
the setup and that has to be in the boot rom because the dhcp phase itself can be
spoofed. I don't actually see a way around this (A similar problem occurs btw with
the 'how do I bootp over ipsec' situation)

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Keith Owens: "Re: [2.3.28] ISA PnP segfault"
Previous message: Brendan Miller: "Q: keyboard: Too many NACKs -- noisy kbd cable?"
In reply to: Hans de Goede: "Re: Announce: initrd-tftp 0.1"
Next in thread: Jamie Lokier: "Re: Announce: initrd-tftp 0.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Jan 15 2000 - 21:00:15 EST