On Fri, 15 Aug 2003 18:09:49 -0700 "H. Peter Anvin" <hpa@zytor.com> wrote: > Hmmm... maybe I should hack in XAuth (or if you think it'd be a quick > one...) vpnc contains an apparently working XAuth implementation that I > can maybe crib off. > > http://people.redhat.com/~katzj/vpnc-0.1-3.src.rpm Go for it. You could also hack vpnc to configure the kernel instead of it's internal IPSEC implementation. I intended to do this at one point but never got the time. On the client side the only thing XAUTH needs is the packet formats and asking the user for the passphrase, it's pretty trivial. You don't even need a RADIUS implementation or anything like that. The hard part is the IKE side code to support the other end. - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
