Penetration Testing mailing list archives
Re: A tool for crafting ESP packets
From: Emre Yildirim <emre.yildirim () us army mil>
Date: Sun, 25 Nov 2001 08:18:44 -0600
Loki wrote:
Also, AH isn't a "packet" it provides authentication mechanisms for IP datagrams and protection against replay attacks.
Then "ESP" isn't really a packet either, since it's just the encrypted payload. By the way, you can have a "AH" packet i.e.
tunnel AH packet (good for gateway-to-gateway connections) [IP header 1] [AH] [IP Header 2] [TCP Header] [data] transport AH packet (host-to-host) [IP header 1] [AH] [TCP header 2] [data]The authentication header provides integrity for the IP header, the encapsulating security payload just secures everything in the packet that follows the header.
Just my $0.02 on this.
RFC 2402: ftp://ftp.isi.edu/in-notes/rfc2402.txt Loki www.fatelabs.com
-- Emre Yildirim <emre () asper org> GPG KeyID 0xF9E4A1D1 (keyserver.pgp.com) ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- A tool for crafting ESP packets Loki (Nov 24)
- Re: A tool for crafting ESP packets Nelson Brito (Nov 24)
- Re: A tool for crafting ESP packets Loki (Nov 24)
- Re: A tool for crafting ESP packets Emre Yildirim (Nov 26)
- Re: A tool for crafting ESP packets Nelson Brito (Nov 26)
- Re: A tool for crafting ESP packets Loki (Nov 26)
- Re: A tool for crafting ESP packets Loki (Nov 24)
- Re: A tool for crafting ESP packets Nelson Brito (Nov 24)
- <Possible follow-ups>
- Re: A tool for crafting ESP packets samsi data (Nov 26)
- Re: A tool for crafting ESP packets Loki (Nov 26)
- RE: A tool for crafting ESP packets amok (Nov 28)
- RE: A tool for crafting ESP packets Jose Nazario (Nov 29)