Go to file
Peter Simons 0afcc637d7 Add support for opportunistic TCP encryption.
Set "networking.tcpcrypt.enable = true;" to enable opportunistic TCP encryption
based on the user-space tools available from <http://tcpcrypt.org>.

Network attackers come in two varieties: passive and active (man-in-the-middle).
Passive attacks are much simpler to execute because they just require listening
on the network. Active attacks are much harder as they require listening and
modifying network traffic, often requiring very precise timing that can make
some attacks impractical.

Opportunistic encryption cannot protect against active attackers, but it *does*
protect against passive attackers. Furthermore, Tcpcrypt is powerful enough to
stop active attacks, too, if the application using it performs authentication.

A complete description of the protocol extension can be found at
<http://tools.ietf.org/html/draft-bittau-tcp-crypt-00>.
2013-09-10 23:32:55 +02:00
doc Fix typo and incorrect package name 2013-09-02 04:54:09 +00:00
gui renaming all occurrences of /var/run/{booted,current}-system 2012-07-23 14:01:35 -04:00
lib Execute NixOS VM tests on a separate machine 2013-09-02 11:18:22 +02:00
maintainers Update to use NixOps in stead on charon, use copy_image method for copying to other regions. 2013-06-05 18:12:20 +02:00
modules Add support for opportunistic TCP encryption. 2013-09-10 23:32:55 +02:00
tests Update all legacy-style modules 2013-09-04 13:05:09 +02:00
.gitignore Ignore .version-suffix file created by nixos-rebuild 2013-01-16 10:12:42 -05:00
.version Bump the NixOS version 2013-09-02 11:18:22 +02:00
COPYING * Add a license, finally :-) 2010-05-28 11:48:41 +00:00
default.nix Remove reference to non-existant config.tests 2013-09-03 15:14:55 +02:00
README * URL updates. 2008-05-09 15:08:43 +00:00
release-combined.nix Add vdi.i686-linux to the release-critical jobs 2013-08-26 14:11:56 +02:00
release.nix Build 32-bit VirtualBox image 2013-08-26 14:06:00 +02:00

*** NixOS ***

NixOS is a Linux distribution based on the purely functional package
management system Nix.  More information can be found at
http://nixos.org/nixos and in the manual in doc/manual.