summaryrefslogtreecommitdiff
path: root/sbin
diff options
context:
space:
mode:
authorNiklas Hallqvist <niklas@cvs.openbsd.org>1998-11-20 07:33:35 +0000
committerNiklas Hallqvist <niklas@cvs.openbsd.org>1998-11-20 07:33:35 +0000
commit759b73123d50d8f8ef3b873386e2a953d2dba434 (patch)
tree5354f9289232c5c8705ed24a88810bde0a4ada78 /sbin
parent0f26591cfce6dd55174a8861c0a2b639e99370eb (diff)
Fix acceptable main mode transforms
Diffstat (limited to 'sbin')
-rw-r--r--sbin/isakmpd/isakmpd.conf.sample35
1 files changed, 13 insertions, 22 deletions
diff --git a/sbin/isakmpd/isakmpd.conf.sample b/sbin/isakmpd/isakmpd.conf.sample
index fdb004e2e08..312bb9f1a45 100644
--- a/sbin/isakmpd/isakmpd.conf.sample
+++ b/sbin/isakmpd/isakmpd.conf.sample
@@ -1,17 +1,15 @@
-# $OpenBSD: isakmpd.conf.sample,v 1.3 1998/11/17 11:10:15 niklas Exp $
-# $EOM: isakmpd.conf.sample,v 1.15 1998/11/14 23:41:43 niklas Exp $
+# $OpenBSD: isakmpd.conf.sample,v 1.4 1998/11/20 07:33:34 niklas Exp $
+# $EOM: isakmpd.conf.sample,v 1.16 1998/11/20 07:12:35 niklas Exp $
# A configuration sample for the isakmpd ISAKMP/Oakley (aka IKE) daemon.
[General]
-Retransmits= 10
+Retransmits= 5
-[Main mode initiator]
-Offered-transforms= BLF-SHA-16,DES-MD5
-
-[Main mode responder]
-# XXX Not yet supported.
+[Main mode]
+Offered-transforms= BLF-SHA-M1024,DES-MD5
#Accepted-transforms= BLF-SHA-M1024,BLF-SHA-EC185,BLF-SHA-EC155,DES-MD5
+Accepted-transforms= BLF-SHA-EC185,BLF-SHA-EC155,DES-MD5
[DES-MD5]
ENCRYPTION_ALGORITHM= DES_CBC
@@ -20,41 +18,34 @@ AUTHENTICATION_METHOD= PRE_SHARED
GROUP_DESCRIPTION= MODP_768
Life= LIFE_600_SECS
-[BLF-SHA-16]
-ENCRYPTION_ALGORITHM= BLOWFISH_CBC
-KEY_LENGTH= 128
-HASH_ALGORITHM= SHA
-AUTHENTICATION_METHOD= PRE_SHARED
-GROUP_DESCRIPTION= MODP_1024
-Life= LIFE_600_SECS
-
[BLF-SHA-M1024]
-ENCRYPTION_ALGORITHM= BLOWFISH
+ENCRYPTION_ALGORITHM= BLOWFISH_CBC
+KEY_LENGTH= 128,64:196
HASH_ALGORITHM= SHA
AUTHENTICATION_METHOD= PRE_SHARED
GROUP_DESCRIPTION= MODP_1024
Life= LIFE_600_SECS
[BLF-SHA-EC155]
-ENCRYPTION_ALGORITHM= BLOWFISH
+ENCRYPTION_ALGORITHM= BLOWFISH_CBC
+KEY_LENGTH= 128,64:196
HASH_ALGORITHM= SHA
AUTHENTICATION_METHOD= PRE_SHARED
GROUP_DESCRIPTION= EC2N_155
Life= LIFE_600_SECS
[BLF-SHA-EC185]
-ENCRYPTION_ALGORITHM= BLOWFISH
+ENCRYPTION_ALGORITHM= BLOWFISH_CBC
+KEY_LENGTH= 128,64:196
HASH_ALGORITHM= SHA
AUTHENTICATION_METHOD= PRE_SHARED
GROUP_DESCRIPTION= EC2N_185
Life= LIFE_600_SECS
-[Quick mode initiator]
+[Quick mode]
#Offered-suites= QM-ESP-DES-SUITE,\
# QM-ESP-DES-MD5-SUITE,QM-AH-MD5-ESP-DES-SUITE
Offered-suites= QM-ESP-DES-SUITE
-
-[Quick mode responder]
# XXX Not yet supported.
#Accepted-suites= QM-ESP-DES-MD5-SUITE,QM-AH-MD5-ESP-DES-SUITE
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-24 17:01:27 +0000