Slashdot Mirror


Flaw Found in VPN Crypto Security

peeon writes "CNET reports the British National Infrastructure Security Coordination Centre has discovered a flaw in IPSEC protocol. From the article: 'The flaw, which the NISCC rates as "high" risk, makes it possible for an attacker to intercept IP packets traveling between two IPsec devices. They could then modify the encapsulation security payload--a subprotocol that encrypts the data being transported.'"

4 of 106 comments (clear)

  1. Old news by Linker3000 · · Score: -1, Redundant

    Yeah, I intercepted this story elsewhere about 2 days ago.

    OLD news for nerds?

    --
    AT&ROFLMAO
    1. Re:Old news by Anonymous Coward · · Score: 0, Redundant

      Yes, for hysterical paranoids!

  2. OpenBSD is clear by Anonymous Coward · · Score: -1, Redundant


    OpenBSD is blissfully immune to this. Yet another hole they don't have to worry about. I think I may switch.

  3. OpenBSD PF settings by Anonymous Coward · · Score: -1, Redundant

    Always use auth and enc when you set up esp.
    Simple, eh?