[prev in list] [next in list] [prev in thread] [next in thread]
List: openswan-dev
Subject: Re: [Openswan dev] Invalid argument NULL (patch from users)
From: Paul Wouters <paul () xelerance ! com>
Date: 2005-12-19 15:11:06
Message-ID: Pine.LNX.4.63.0512191609500.27802 () tla ! xelerance ! com
[Download RAW message or body]
On Mon, 19 Dec 2005, Alain RICHARD wrote:
> Please note also that the IETF ipsec working group is not considering ESP_NULL
> as a testing stuff, but is indicated as required in the current drafts :
>
> http://www.ietf.org/internet-drafts/draft-ietf-ipsec-esp-ah-algorithms-02.txt
So is 1des and mod768, which we do not support.
Invariably, ESP_NULL is badly used. It is used when other "strong" crypto,
such as some weak broken WEP is used.
Anyway, it will be fixed, though using it is still a bad idea.
Paul
_______________________________________________
Dev mailing list
Dev@openswan.org
http://lists.openswan.org/mailman/listinfo/dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic