Software-update: strongSwan 4.3.0

Voor het beveiligen van verbindingen over openbare netwerken kunnen verschillende protocollen worden gebruikt, zoals het veel toegepaste ipsec. StrongSwan is een ipsec-implementatie voor Linux-systemen, waarvan de 4.2- en 4.3-vleugels zich richten op de huidige 2.6-Linux-kernel. Ondersteuning voor ikev1, ikev2 en ipv6 is aanwezig zoals op deze pagina na te lezen is. De ontwikkelaars hebben strongSwan 4.3.0 uitgebracht en van de volgende aankondiging voorzien:

Version 4.3.0

We proudly present the first release of the new strongSwan 4.3 branch which offers the following two major features:
  • IKEv2 Multiple Authentication Exchanges (RFC 4739)
    Initiators and responders can use several authentication rounds (e.g. RSA followed by EAP) to authenticate. The new ipsec.conf leftauth/rightauth and leftauth2/rightauth2 parameters define their own authentication rounds and setup constraints for the remote peer. See the ipsec.conf man page for more details.
    A typical sample scenario using mutual RSA authentication in the first round and EAP-SIM client authentication in the second round can be found under the link.
  • Use of libstrongswan in the IKEv1 pluto code
    We refactored the pluto and scepclient code to share basic functions (memory allocation, leak detective, chunk handling, printf_hooks, strongswan.conf attributes, ASN.1 parser, etc.) with the libstrongswan library.
    As a first benefit, up to two DNS and WINS servers to be sent via the IKEv1 ModeConfig protocol can be configured in the pluto section of /etc/strongswan.conf. A configuration example can be found under the link.
And here some more features:
  • If glibc printf hooks (register_printf_function) are not available, strongSwan can use the vstr string library to run on non-glibc systems.
  • The IKEv2 charon daemon now supports the ESP CAMELLIA-CBC cipher (esp=camellia128|192|256). A sample scenario can be found under the link.
Due to the heavy refactoring of large parts of both the IKEv1 and IKEv2 source code we strongly advise *against* using 4.3.0 in mission critical applications. Please use the stable strongSwan 4.2.14 version on production systems instead, at least until the release of 4.3.1.
Versienummer 4.3.0
Releasestatus Final
Besturingssystemen Linux
Website strongSwan
Download http://download.strongswan.org/strongswan-4.3.0.tar.gz
Bestandsgrootte 3,48MB
Licentietype GPL

Door Japke Rosink

Meukposter

Feedback • 24-04-2009 21:02 0

24-04-2009 • 21:02

0

Bron: strongSwan

Update-historie

09-'19 strongSwan 5.8.1 0
01-'19 strongSwan 5.7.2 0
10-'18 strongSwan 5.7.0 0
06-'18 strongSwan 5.6.3 1
02-'18 strongSwan 5.6.2 0
08-'17 strongSwan 5.6.0 0
11-'15 strongSwan 5.3.4 0
05-'14 strongSwan 5.1.3 0
01-'13 strongSwan 5.0.2 0
05-'12 strongSwan 4.6.3 3
Meer historie

Lees meer

Strongswan

geen prijs bekend

Software Systeem- en netwerkutility's Netwerktechnologie Vpn

Reacties

-Moderatie-faq
0
0
0
0
0
0
Wijzig sortering

Er zijn nog geen reacties geplaatst

Op dit item kan niet meer gereageerd worden.

Apple iPhone 16e LG OLED evo G5 Google Pixel 10 Samsung Galaxy S25 Star Wars: Outlaws Nintendo Switch 2 Apple AirPods Pro (2e generatie) Sony PlayStation 5 Pro

Tweakers is onderdeel van DPG Media B.V.
Alle rechten voorbehouden - Auteursrecht © 1998 - 2025 Hosting door TrueFullstaq