[strongSwan] [Windows 8 / IKEv2] Can't connect windows 8 client

Martin Willi martin at strongswan.org
Wed Sep 26 09:17:53 CEST 2012


> Does this patch was included in further release of strongswan? 5.0 ou 
> greater for example?

The patch is not mainline yet, and I don't know if it ever will. I'm a
little skeptic that users really understand the security implications.

A more secure approach would be to use the certificate ID as peer
identity, regardless of the IDi we get. This would bind the policy
lookup strictly to the certificate, while working around the issue we
see with Windows 8.

Regards
Martin





More information about the Users mailing list