Subject: Re: /etc/ipsec.conf permissions
To: None <firstname.lastname@example.org>
From: Curt Sampson <email@example.com>
Date: 04/15/2003 18:41:00
On Tue, 15 Apr 2003 firstname.lastname@example.org wrote:
> >I'm not sure if racoon.conf should be "mode=0644", or "mode=0600 tags=nodiff"
> i guess 644 is ok.
Could racoon be set up in a weak manner, such that knowing how it was
improperly set help an attacker? If so, perhaps we should not expose
this information, to make the attack a bit harder.
Curt Sampson <email@example.com> +81 90 7737 2974 http://www.netbsd.org
Don't you know, in this new Dark Age, we're all light. --XTC