Discussion:
[strongSwan-dev] Tunnel establishes with empty ("") PSK value
Pavan Maganti
2018-08-09 13:14:30 UTC
Permalink
Hi,

I am able to establsih IKEv2 tunnel with empty ("") PSK value used in
ipsec.secrets file on both peers. Is this expected? Please clarify.

Regards,
Pavan M
Andreas Steffen
2018-08-09 13:20:50 UTC
Permalink
Hi Pavan,

strongSwan does not check the security strength of the PSK used. Thus
an empty PSK explicitly set in ipsec.secrets is admissible. The traffic
still gets encrypted, though.

Regards

Andreas
Post by Pavan Maganti
Hi,
I am able to establsih IKEv2 tunnel with empty ("") PSK value used in
ipsec.secrets file on both peers. Is this expected? Please clarify.
Regards,
Pavan M
======================================================================
Andreas Steffen ***@strongswan.org
strongSwan - the Open Source VPN Solution! www.strongswan.org
Institute for Networked Solutions
HSR University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[INS-HSR]==
Loading...