Re: Vpn Connections.

From: Dan Williams <dcbw redhat com>
To: Paul Wouters <paul xelerance com>
Cc: Martinsson Patrik <patrik martinsson smhi se>, networkmanager-list gnome org
Subject: Re: Vpn Connections.
Date: Mon, 27 Oct 2008 13:01:28 -0400

On Mon, 2008-10-27 at 12:34 -0400, Paul Wouters wrote:
> On Mon, 27 Oct 2008, Martinsson Patrik wrote:
> 
> > How does NetworkManagaer handle the import of cisco pcf file ? 
> > What im really interested in is if it uses all the settings i have in that file ?
> 
> Openswan has a pcf2os.pl script on contrib/ that can convert pcf files to openswan
> config files. However, the pcf file can contain an obfuscated group PSK. I don't know
> if anyone ever wrote a proper deobfuscation program. There used to be something at
> http://femto.cs.uiuc.edu/~sbond/vpnc/ which basically amounted to running the
> cisco client through ltrace -i and read it from a memcpy statement.

It's been completely handled now, vpnc ships a 'cisco-decrypt' in the
tarball which doesn't depend on the binary cisco client.  There are some
patches awaiting my review that will automatically decrypt the group
password on import.

Dan

> > NetworkManager: <info>  VPN connection 'Connection to SMHI' (Connect) reply received.
> > /usr/sbin/vpnc: noninteractive can't reuse password
> 
> If this is using XAUTH, Openswan now supports storing the XAUTH password in its
> /etc/ipsec.secrets file (though I know NM would like to be able to just pass all
> arguments to openswan)
> 
> Paul, who wishes he had more cycles to spend on integrating NM and openswan.
> _______________________________________________
> NetworkManager-list mailing list
> NetworkManager-list gnome org
> http://mail.gnome.org/mailman/listinfo/networkmanager-list

Follow-Ups:
- RE: Vpn Connections.
  - From: New Acct

References:
- Vpn Connections.
  - From: Martinsson Patrik
- Re: Vpn Connections.
  - From: Paul Wouters

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]