[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openswan-dev
Subject:    Re: [Openswan dev] Starter 0.3 config reloads
From:       "Mathieu Lafon" <mlafon () arkoon ! net>
Date:       2004-06-21 15:42:54
Message-ID: OFAB12D25D.2AF033C2-ONC1256EBA.005606A1-C1256EBA.00565A8B () arkoon ! net
[Download RAW message or body]

Joshua Jackson wrote on 21/06/2004 07:13:36 :

> Just curious if there is any reason on a SIGHUP to not have
> starter issue a whack message to have Pluto re-read ipsec.secrets.
> I've run into a couple of situations where a PSK needed to be
> changed and I didn't want to bring all of the tunnels offline to
> get pluto to re-read the keys.
> 
> Would it be better to just have starter do this on SIGHUP or use
> another signal for this function?

You're right. Starter should issue a REREADSECRETS whack message
if ipsec.secrets file has changed.

-- 
Mathieu Lafon - Arkoon Network Security
[prev in list] [next in list] [prev in thread] [next in thread]