[Openswan dev] Interop Bug: Windows XP + Openswan 2.1.2_20040427
Michael Richardson
mcr at sandelman.ottawa.on.ca
Fri Apr 30 11:49:34 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Does winXP not get a certificate? (the log would tell you that)
(Does it ASK for one?)
Perhaps the server needs to have "leftsendcert=always" for winXP compatibility.
The problem with making this the default is that certificates are often
large, often cause fragmentation at the UDP layer, and this has
FREQUENTLY led to systems being unable to communiate due to loss and/or
filtering of fragments.
- --
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] mcr at xelerance.com http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys
iQCVAwUBQJJnfIqHRg3pndX9AQEDygQA4ZHc8wdfSturO2y1bZW0g6r3f84i+TdH
OhD6DiEPKhnH2tQ4u3a6+X3+3g7Tj42MmklVWNBntGNIS4dwWktxmrKQHdMb1615
akJ4eOew5Qhv4At3Am9gKbaIGtsRzChEVq0T5nhkL6soB8sUNBCSbIX1YY6JSb/S
wVHadXEiV+4=
=+J3I
-----END PGP SIGNATURE-----
More information about the Dev
mailing list