On 11/15/05, Thor Lancelot Simon <tls@rek.tjls.com> wrote:
> On Tue, Nov 15, 2005 at 01:37:04PM +0100, Dries Schellekens wrote:
> >
> > OpenBSD has audited their IKE parsing code early 2004 and thus is not
> > vunerable:
> > http://marc.theaimsgroup.com/?l=3Dopenbsd-misc&m=3D113199092403670&w=3D=
2
>
> Is this merely their claim, or do they pass the test suite?

According to the archived message living at the link above, one of the
developers tested their isakmpd(8) against the newly presented
vulnerabilities and determined it is not vulnerable. The message dates
2005/11/14. It also mentions the audit, but the main point deals with
testing.

Cheers,

Rogier

--
If you don't know where you're going, any road will get you there.