[Swan-commit] Changes to ref refs/heads/master
Paul Wouters
paul at vault.libreswan.fi
Wed Jan 16 06:22:40 EET 2013
New commits:
commit f3a57a1ab4bd66bbb6df0198ee1e750e9b6cb82e
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 15 23:22:16 2013 -0500
* Missed a KLIPS -> KLIPS24 reference in make output
commit a6610e143bfe94aa79258ba59cbdbbc5cff7f09d
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 15 23:21:49 2013 -0500
* updated changes
commit 635ad927c648a2a26c79d4df6eb306e66f29f4cd
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 15 23:17:34 2013 -0500
* XAUTH: Added xauthby=alwaysok option
Setting xauthby to alwaysok causes the XAUTH authentication to always succeed.
This is useful to supoprt clients that require XAUTH, but for which no real
XAUTH usernames/passwords are provisioned. This is valid for some certificate
based deployments of devices.
The static function do_md5_authentication() got renamed to do_file_authentication(),
because it is using the crypt() call, which supports more then just MD5.
The man page has been updated to reflect this, and also adds a note about MD5 not
being available in FIPS mode.
A separate bug has been opened for a feature to set the xauth password file name,
instead of hardcoding it to /etc/ipsec.d/passwd.
More information about the Swan-commit
mailing list