[Openswan dev] Re: [PATCH] Openswan and OS X with NAT-T
Michael Richardson
mcr at xelerance.com
Mon Sep 26 21:11:53 CEST 2005
-----BEGIN PGP SIGNED MESSAGE-----
>>>>> "Jacco" == Jacco de Leeuw <jacco2 at dds.nl> writes:
>> Note that I'm not advocating to integrate this into the official
>> distribution (the fact that Apple uses values that conflict with
>> another RFC makes it quite ugly IMHO).
Jacco> It seems they made a mistake and now they are stuck with
Jacco> it. Even if they were to release a fixed version, Mac clients
Jacco> won't upgrade overnight. I guess they value compatibility
Jacco> with the current installed base more than compatibility with
Jacco> the standard and other implementations.
No, that's not the case at all.
That's what vendor IDs are for --- to work around bugs in your old code.
Jacco> Actually, source code is available, e.g.:
Jacco> http://darwinsource.opendarwin.org/10.4.1/network_cmds-245/racoon.tproj/
Jacco> http://darwinsource.opendarwin.org/10.4.1/
Jacco> ... but it is under the APSL (incompatible with the GPL), it
Jacco> seems to be a fork off KAME, no diffs, few comments, no CVS,
Jacco> no mailinglist, etc.
So very hard for anyone to fix it and distribute it.
- --
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] mcr at xelerance.com http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys
iQCVAwUBQziORYqHRg3pndX9AQFBlwP9EakFz0hOroOFE5tZIDIlvPJaXKyJ0/Fp
YFYD0KHG37lCwvMhLsew25U3VkeP8QSBV2ytwaGNIWzcJv68ic/2GK950FhPrtry
hf1CWabFzpHhPcF5mg0/m7tGLw3/jFL3UK3WkWj4Lo0dKMiOiliv2NPB2sS7Jkyg
BCNKCg/dEjk=
=nDNx
-----END PGP SIGNATURE-----
More information about the Dev
mailing list