From owner-freebsd-security Wed Sep 27 3: 9:18 2000 Delivered-To: freebsd-security@freebsd.org Received: from lynx.aba.net.au (lynx.esec.com.au [203.21.84.1]) by hub.freebsd.org (Postfix) with SMTP id 4D73E37B42C for ; Wed, 27 Sep 2000 03:09:10 -0700 (PDT) Received: (qmail 19100 invoked from network); 27 Sep 2000 10:09:04 -0000 Received: from melb-dialin15.esec.com.au (HELO eSec.com.au) (203.25.253.79) by lynx.esec.com.au with SMTP; 27 Sep 2000 10:09:04 -0000 Message-ID: <39D1B8E8.B5B070FB@eSec.com.au> Date: Wed, 27 Sep 2000 20:07:52 +1100 From: Sam wun Organization: eSec X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 Cc: "'freebsd-security@freebsd.org'" Subject: What happened if the pre-share key got cacked? References: <00BF97DD9F3FD311AB860060084E50DD311C71@exchange.xpert.com> <20000925143807.A401@hal9000.bsdonline.org> Content-Type: text/plain; charset=gb2312 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I am a bit concernt about hte pre-share key that using by the IPsec couple of client and the server machines. What if this key got stolent somehow? what will be the consequence? I am using IPSec in FreeBSD. The pre-share key is used by racoon. The psk.txt is protected by 600 permission. But what if my root account got cracked? anyone whom posesses my root account will be able to see the content of the psk.txt file? It may not be that importnat if the psk.txt got hacked, the hacker still hard to penetrade in to another machine which also got IPsec setup. Because all data transfer is protected by IPsec., thus tcpdump will fail. Am I right? Thanks Sam. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message