BugTraq
Cracking preshared keys Apr 23 2003 10:35AM
Michael Thumann (mthumann ernw de) (2 replies)
Re: Cracking preshared keys Apr 24 2003 12:08AM
daw mozart cs berkeley edu (David Wagner) (3 replies)
Re: Cracking preshared keys Apr 26 2003 05:26PM
Stefan Laudat (stefan worldbank ro)
> I find your recommendations hard to take seriously. This is not a
> vulnerability in IPSec, a good reason to disable vpn access, or anything
> like that. Just use some common sense in how you use the crypto. If you
> must use pre-shared keys, choose strong keys; or, use public keys instead
> of pre-shared keying. Surely you agree?

Third option: there are some IPSEC implementations (such as
Linksys' BEFVP41 vpn router) which blacklist the attacker's IP
for a given amount of time when wrong PSK count overpasses
a threshold. It takes an eternity to try many combinations though :)

just my .02 eurocents

--
Stefan Laudat
CCNA & CCAI
-------------
Marriage is the only adventure open to the cowardly.
-- Voltaire

[ reply ]
Re: Cracking preshared keys Apr 25 2003 04:34AM
Curt Sampson (cjs cynic net)
Re: Cracking preshared keys Apr 24 2003 07:31PM
Michael Thumann (mlthumann ids-guide de)
Re: Cracking preshared keys Apr 23 2003 07:46PM
Damir Rajnovic (gaus cisco com) (2 replies)
Re: Cracking preshared keys Apr 24 2003 03:30AM
Derek (derekm rogers com)
Re: Cracking preshared keys Apr 24 2003 01:10AM
Gary Flynn (flynngn jmu edu) (1 replies)
Re: Cracking preshared keys Apr 24 2003 07:46PM
Michael Thumann (mthumann ernw de) (1 replies)
Re: Cracking preshared keys Apr 24 2003 07:41PM
Gary Flynn (flynngn jmu edu)


 

Privacy Statement
Copyright 2010, SecurityFocus