Hosting Provided By

Re: linux-ipsec: initiator vs responder

From: Angelos D. Keromytis <angelos(at)dsl.cis.upenn.edu>
Date: Thu Mar 19 1998 - 15:40:36 EST

-----BEGIN PGP SIGNED MESSAGE----- To: Richard Guy Briggs <rgb@conscoop.ottawa.on.ca> Subject: Re: linux-ipsec: initiator vs responder Cc: linux-ipsec@clinet.fi (linux ipsec)
Date: 03/19/98, 15:40:36

In message <199803191701.MAA27465@conscoop.ottawa.on.ca>, Richard Guy Briggs wr ites:
>
>Can I safely assume that the 'i' and 'r' bits in the setsa are completely
>obsolete? These seem to be used only at the ISAKMP/OAKLEY/IKE level.
>

Entirely obsolete.

>Another question: Can I assume that the last 8 octets of an encryption
>procedure are suitable for the IV of the next outgoing packet on that SA?

It would be even better if you could get random bits; I don't think you'll run into any problems if you use the previous 8 bytes though. - -Angelos

-----BEGIN PGP SIGNATURE-----

Version: 2.6.3i
Charset: noconv
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBNRGCxL0pBjh2h1kFAQFCwwP/UISfdzG8RihUMSSVpLIfWVE+TCB8BzvM mwwiZbNp9eLAyvLO8kFU1ArOt1ppIbFVjyekZ4GQCYugwWFWaSflroHPk3DDIcHw Wq6bxhlSDZDBVcZP9Gg6wzoKdbkET6U5bDP+iYg2Ya+zDhYZzRszjTilG/tUQ8RG dVsJ0OZO8/M=
=QyKf
-----END PGP SIGNATURE----- Received on Thu Mar 19 16:08:45 1998

This message: [ Message body ]
Next message: Richard Guy Briggs: "Re: linux-ipsec: initiator vs responder"
Previous message: John Gilmore: "Re: linux-ipsec: syntax conventions, part 1"
In reply to: Richard Guy Briggs: "linux-ipsec: initiator vs responder"
Next in thread: Richard Guy Briggs: "Re: linux-ipsec: initiator vs responder"
Reply: Richard Guy Briggs: "Re: linux-ipsec: initiator vs responder"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:59:28 EDT

Do you need help?