[Openswan Users] Transport mode in 2.6 IPsec

Sat Jul 17 09:18:07 CEST 2004

Jacco de Leeuw <jacco2 at dds.nl> wrote:
> 
> In addition to the above, Mathieu also wrote:
> 
>   "Perhaps I'm too paranoid".
> 
> So it could be just him, but I don't know of anybody else who has
> done an assessment of the security of NAT-T in Transport Mode.

The draft for NAT-T has always mentioned the security issues relating
to transport mode.  See Section 5 in 

draft-ietf-ipsec-udp-encaps-09.txt
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert at gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt