tech-net: Re: openbsd isakmpd vulnerability

Subject: Re: openbsd isakmpd vulnerability
To: Rui Paulo <goteki@pixeloverflow.com>
From: Jason Thorpe <thorpej@wasabisystems.com>
List: tech-net
Date: 03/24/2004 12:40:01

--Apple-Mail-56-921869695
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII; format=flowed


On Mar 24, 2004, at 11:08 AM, Rui Paulo wrote:

> Hello everyone.
> Is NetBSD's isakmpd vulnerable to Rapid7 OpenBSD's advisory ?
> http://www.rapid7.com/advisories/R7-0018.html

NetBSD does not use OpenBSD's isakmpd.  We use KAME's racoon IKE daemon.

There is a pkg for isakmpd, and it may be vulnerable, but NetBSD's 
default install is not vulnerable.

         -- Jason R. Thorpe <thorpej@wasabisystems.com>


--Apple-Mail-56-921869695
content-type: application/pgp-signature; x-mac-type=70674453;
	name=PGP.sig
content-description: This is a digitally signed message part
content-disposition: inline; filename=PGP.sig
content-transfer-encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (Darwin)

iD8DBQFAYfIhOpVKkaBm8XkRAsP7AJwIa3qlte07lueEAd0f4fz5iKW1KwCgilSe
fIcBs4KsvRO+wzP/qwi+xf8=
=Ks5w
-----END PGP SIGNATURE-----

--Apple-Mail-56-921869695--