Subject: Re: /etc/ipsec.conf permissions
To: None <>
From: Curt Sampson <>
List: tech-security
Date: 04/15/2003 18:41:00
On Tue, 15 Apr 2003 wrote:

> >I'm not sure if racoon.conf should be "mode=0644", or "mode=0600 tags=nodiff"
> 	i guess 644 is ok.

Could racoon be set up in a weak manner, such that knowing how it was
improperly set help an attacker? If so, perhaps we should not expose
this information, to make the attack a bit harder.

Curt Sampson  <>   +81 90 7737 2974
    Don't you know, in this new Dark Age, we're all light.  --XTC