From: Sergey Matveev Date: Sun, 18 Jan 2015 09:57:41 +0000 (+0300) Subject: Well, performance is not so high actually X-Git-Tag: 1.4~1 X-Git-Url: http://www.git.cypherpunks.ru/?p=govpn.git;a=commitdiff_plain;h=cbee59b512c87cf2deef34de3f16acfdb81b88fc Well, performance is not so high actually Signed-off-by: Sergey Matveev --- diff --git a/README b/README index 2852a09..f2c0d66 100644 --- a/README +++ b/README @@ -2,7 +2,7 @@ ===== SYNOPSIS -govpn is simple high-performance secure virtual private network daemon. +govpn is simple secure virtual private network daemon. It uses DH-EKE for mutual zero-knowledge authentication and authenticated encrypted transport. It runs under GNU/Linux and FreeBSD. @@ -22,12 +22,12 @@ Because of UDP and authentication overhead: each packet grows in size during transmission, so you have to lower you maximum transmission unit (MTU) on network interface. -High security and high performance are the goals for that daemon. It -uses fast cryptography algorithms with 128bit security margin, strong -mutual zero-knowledge authentication and perfect-forward secrecy -property. An attacker can not know anything from captured traffic, even -if pre-shared key is compromised. Rehandshake is performed by client -every 4 GiB of transfered data. +High security is the goal for that daemon. It uses fast cryptography +algorithms with 128bit security margin, strong mutual zero-knowledge +authentication and perfect-forward secrecy property. An attacker can not +know anything from captured traffic, even if pre-shared key is +compromised. Rehandshake is performed by client every 4 GiB of +transfered data. Also you can provide up and down scripts that will be executed after either connection is initiated (up-script in background), or is went @@ -42,7 +42,6 @@ COMPARISON TO OpenVPN data unless the other side is authenticated) * Zero-knowledge authentication (pre-shared key is not transmitted in any form between the peers, not even it's hash value) -* Higher performance in some cases * Fully IPv6 compatible CONSOLE OUTPUT LEGEND diff --git a/govpn.go b/govpn.go index de54a2f..7b15dd4 100644 --- a/govpn.go +++ b/govpn.go @@ -1,5 +1,5 @@ /* -govpn -- high-performance secure virtual private network daemon +govpn -- simple secure virtual private network daemon Copyright (C) 2014 Sergey Matveev This program is free software: you can redistribute it and/or modify @@ -16,7 +16,7 @@ You should have received a copy of the GNU General Public License along with this program. If not, see . */ -// High-performance secure virtual private network daemon +// Simple secure virtual private network daemon package main import ( diff --git a/handshake.go b/handshake.go index 8cac69d..6f948b5 100644 --- a/handshake.go +++ b/handshake.go @@ -1,5 +1,5 @@ /* -govpn -- high-performance secure virtual private network daemon +govpn -- Simple secure virtual private network daemon Copyright (C) 2014 Sergey Matveev This program is free software: you can redistribute it and/or modify diff --git a/tap_freebsd.go b/tap_freebsd.go index 398e686..125125f 100644 --- a/tap_freebsd.go +++ b/tap_freebsd.go @@ -1,7 +1,7 @@ // +build freebsd /* -govpn -- high-performance secure virtual private network daemon +govpn -- Simple secure virtual private network daemon Copyright (C) 2014 Sergey Matveev */ diff --git a/tap_linux.go b/tap_linux.go index 03a842f..7a243d7 100644 --- a/tap_linux.go +++ b/tap_linux.go @@ -1,7 +1,7 @@ // +build linux /* -govpn -- high-performance secure virtual private network daemon +govpn -- Simple secure virtual private network daemon Copyright (C) 2014 Sergey Matveev */