Security Incidents mailing list archives

Re: isakmp before smtp?

From: Frank Knobbe <FKnobbe () KNOBBEITS COM>
Date: Mon, 11 Sep 2000 18:04:29 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Uhm... this maybe a stupid questions, but how is this supposed to
work? Don't you need to have keys exchanged or both systems
configured with a shared secret? How can an IPSec session be set up
to someone who is not somehow listed in the configuration of that
mail server? Is there some kind of free-for-all IPSec?

Regards,
Frank

-----Original Message-----
From: Mike Fratto [mailto:mfratto () NWC SYR EDU]
Sent: Sunday, September 10, 2000 8:42 AM
To: INCIDENTS () SECURITYFOCUS COM
Subject: Re: isakmp before smtp?

The MTA is a Windows 2000 box that is configured to try to
use IPsec VPN
for communications if possible, but fall back to clear text
in IPsec fails.



-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.1
Comment: PGP or S/MIME (X.509) encrypted email preferred.

iQA/AwUBOb1k/URKym0LjhFcEQL0QACgy3QMFRPCaZMzPhpPH1M4CkjM+GwAoK2u
J09Mkno4pzYxH161YaDR0BmB
=0EJv
-----END PGP SIGNATURE-----

Current thread:

isakmp before smtp? Philipp Buehler (Sep 12)
- Re: isakmp before smtp? Mike Fratto (Sep 12)
- Message not available
  - Re: isakmp before smtp? Mike Fratto (Sep 12)
- <Possible follow-ups>
- Re: isakmp before smtp? Frank Knobbe (Sep 12)
  - Re: isakmp before smtp? Mike Fratto (Sep 12)
  - Re: isakmp before smtp? Valdis Kletnieks (Sep 12)
    - Re: isakmp before smtp? Steffen Dettmer (Sep 14)
    - Re: isakmp before smtp? Valdis Kletnieks (Sep 14)
    - Re: isakmp before smtp? Crist Clark (Sep 14)