[Swan-dev] hack for MS 818043 NAT-T Update
paul at nohats.ca
Mon May 26 08:28:23 EEST 2014
On Sun, 25 May 2014, D. Hugh Redelmeier wrote:
> From: D. Hugh Redelmeier <hugh at mimosa.com>
> To: Libreswan Development List <swan-dev at lists.libreswan.org>
> Subject: [Swan-dev] hack for MS 818043 NAT-T Update
> Is there a good explanation for what this is about? Certainly not in the
> code (which is where I'd want at least some of it, or a pointer).
I believe on rekey, it sent a bogus subnet or wrong type of ID.
> <http://support.microsoft.com/kb/818043> was released in 2003 and applies
> to products that microsoft has obsoleted (WinXP and Win 2000).
> Was the problem introduced by this MS patch or fixed by it?
It was introduced by the Microsoft update.
> Is this work-around still a good idea?
Yes, there are millions of XP/2000 machines out there.
More information about the Swan-dev