LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-04-2005, 08:38 AM   #1
cranium2004
Member
 
Registered: Feb 2004
Distribution: FC4,RHEL4
Posts: 223

Rep: Reputation: 30
again simple IPSec protocol query


hello,
Again got two IPSec question.
1) In AH protocol mutable IPv4 fields that cannot be proteted are
Type of Service (TOS)
Flags
Fragment offset
TTL
Header Checksum
So that mean when MAC hash is calculated those fileds are removed.
So i want to ask that mean packet is crosscheked only at end points of communication?
Because when in path packet goes through Router to Router then adjecent routers have same hash at sending router1 routine and receiving routine then why not to include those fields?
or its the case that routers only forward packet by checking IP header destination address?

2) Does IPSec is really vulnerable to man in middle attacks? if its possible then when packet reaches to application layer of end system, end system drops the packet in HMAC calcualation?
Is that right?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Simple query sachinh Linux - Hardware 2 12-28-2004 11:42 PM
a simple query sachinh Linux - Security 1 11-29-2004 06:13 AM
Simple MySQL Query Help xianzai Programming 3 11-01-2004 05:10 AM
Simple HD install Q. Basic protocol? lostlyre Linux - Hardware 3 06-30-2004 03:07 AM
IPSEC VPN client - IP Protocol ID 57 agaatje Linux - Networking 0 07-18-2001 02:37 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:21 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration