[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on CRACK

To: Stephane Beaulieu <sbeaulieu@xxxxxxxxxxxx>
Subject: Re: Comments on CRACK
From: Moshe Litvin <moshe@xxxxxxxxxxxxxx>
Date: Tue, 26 Oct 1999 18:36:08 +0200
Cc: Dan Harkins <dharkins@xxxxxxxxxxxxxxxxxxx>, ipsec@xxxxxxxxxxxxxxxxx, ietf-ipsra@xxxxxxxx
List-archive: <http://www.vpnc.org/ietf-ipsra/mail-archive/>
List-id: <ietf-ipsra.vpnc.org>
List-unsubscribe: <mailto:ietf-ipsra-request@vpnc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-ipsra@xxxxxxxxxxxxx

Stephane Beaulieu wrote:

<snip>

>   However, I would like to hear everyone else's
> opinion on this.  Should the use of pre-shared keys be restricted in XAUTH
> (or whatever other protocol) because it encourages the use of weak
> pre-shared keys?
>
> If there is concensus, pre-shared keys can be removed from XAUTH.  I don't
> think that we have concensus at this point.

Maybe we can reach a consensus by forbidding group pre-shared keys?

Moshe

begin:vcard 
n:Litvin;Moshe
tel;fax:+972 3 5759256
tel;work:+972 3 7534601
x-mozilla-html:TRUE
org:Check Point Software Technologies Ltd.
adr:;;;;;;
version:2.1
email;internet:moshe@xxxxxxxxxxxxxx
fn:Moshe Litvin
end:vcard

References:
- RE: Comments on CRACK
  - From: Stephane Beaulieu

Prev by Date: RE: Comments on CRACK
Next by Date: Re: User-level Authentication Mechanisms for IPsec
Previous by thread: RE: Comments on CRACK
Next by thread: Re: Comments on CRACK
Index(es):
- Date
- Thread