[19426] in bugtraq
single-DES phase 1
daemon@ATHENA.MIT.EDU (*Hobbit*)
Wed Feb 28 11:57:06 2001
Message-ID: <200102281541.KAA04378@narq.avian.org>
Date: Wed, 28 Feb 2001 10:41:30 -0500
Reply-To: *Hobbit* <hobbit@AVIAN.ORG>
From: *Hobbit* <hobbit@AVIAN.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
Looks like Netscreen has a similar issue, but it's documented. One must
use the "pre-g2-des-md5" proposal to talk to version 1.6 of their
software. 2.x accepts 3des.
Earlier versions of the IPSEC standards required single-DES at a minimum,
so it's not surprising that holdovers of this sort exist in any product.
Would it be worth collecting a public list of "IKE to watch out for"?
_H*
