tech-security: Re: IPSEC and user vs machine authentication

Subject: Re: IPSEC and user vs machine authentication
To: Greg Troxel <gdt@ir.bbn.com>
From: Jason Thorpe <thorpej@shagadelic.org>
List: tech-security
Date: 08/12/2005 10:01:08

On Aug 12, 2005, at 4:48 AM, Greg Troxel wrote:

> Is racoon able to negotiate per-socket policy now?  I haven't looked
> in a while.  But per-socket vs. SPD is an orthogonal issue to your
> main concern, I think.

Racoon doesn't do anything with policy negotiation.  But AFAIK it can  
negotiate SAs for per-socket policies just fine.

-- thorpej