Re: Firewall-1 Information leak

From: Grzegorz Mucha (grzegorz.muchaat_private)
Date: Wed Jul 25 2001 - 01:25:17 PDT

Next message: Bryan K. Watson: "Re: permission probs with Arkeia"

Previous message: Eric D. Williams: "hacker copyrights was [RE: telnetd exploit code]"
In reply to: Stephen JT Bourike: "RE: Firewall-1 Information leak"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Stephen JT Bourike wrote:
> 
> Actually, since 4.1 SP-3 the use of Hybrid IKE mode has worked fairly well.
> SP-4 fixes some of the outstanding problems and it is now possible to use
> strongly-authenticated SecuRemote sessions with IKE encryption and key
> exchange.

Sure, but you can use Hybrid Mode for authentication of new sessions but
you still need to use public key (so the CA) or static password
(preshared secret) for getting the network topology to get or update
youre site, because of implementation of internal CA in Management
Module.
Fortunately it changes in NG.

Grzes

Next message: Bryan K. Watson: "Re: permission probs with Arkeia"
Previous message: Eric D. Williams: "hacker copyrights was [RE: telnetd exploit code]"
In reply to: Stephen JT Bourike: "RE: Firewall-1 Information leak"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jul 25 2001 - 12:39:06 PDT