Security flaws in tinc

From: Jerome Etienne (jmeat_private)
Date: Wed Jan 09 2002 - 11:08:39 PST

Next message: IT Resource Center : "HP-UX security bulletins digest"

Previous message: Huagang Xie: "LIDS Security Advisory 1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

the following text describes security flaws in Tinc. It includes a 
description of the security and lists the possible attacks i found.
An attacker can modify packets, replay them and learn pattern of 
the plain text. the tinc author confirmed they are real and practical.

ps: version in .ps, .pdf and .html can be found in http://www.off.net/~jme

text/plain attachment: tinc_secu.txt

Next message: IT Resource Center : "HP-UX security bulletins digest"
Previous message: Huagang Xie: "LIDS Security Advisory 1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 09 2002 - 14:38:19 PST