Project

General

Profile

Actions
Copy link

Feature #7248

open

Web UI for IPSec settings should warn about poor security choices

Added by Sean McBride almost 8 years ago. Updated about 5 years ago.

Status:
New
Priority:
Normal
Assignee:
Jim Pingle
Category:
IPsec
Target version:
-
Start date:
02/10/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

I've spent several days getting my VPN working and learned a lot in the process.

I've made a little patch here:
https://github.com/pfsense/pfsense/pull/3524

that adds warnings about poor security choices. I'm no crypto expert, but my source is:
https://wiki.strongswan.org/projects/strongswan/wiki/IKEv2CipherSuites

I don't think it's sufficient though, there are localization files to fix too I think. And docs like this:
https://doc.pfsense.org/index.php/IKEv2_with_EAP-MSCHAPv2

and the book, wiki, etc. etc.

Actions
Copy link
 #1

Updated by Jim Thompson almost 8 years ago

  • Tracker changed from Bug to Feature
  • Assignee set to Jim Pingle
  • Priority changed from High to Normal
Actions
Copy link
 #2

Updated by Jim Pingle over 5 years ago

  • Category changed from Web Interface to IPsec
Actions
Copy link
 #3

Updated by Jim Pingle about 5 years ago

This could probably use a similar technique to the one I implemented for Certificates on #9825

See 3f0b7bc3ae

Actions
Copy link

Also available in: Atom PDF