Hello Andreas,
Thanks for confirming that strongSwan isn't vulnerable to the mentioned
attack.
However the report claims to have exploits for PSK and RSA signature based
authentication also... Quoting from the report abstract:
"We exploit a Bleichenbacher oracle in an IKEv1 mode, where RSA
Hi Sandesh
The offline dictionary PSK attack isn’t something new (people have known about
this since last millennia!).
In summary if you have a ‘strong’ PSK you’re safe.. But if you have an active
MiTM as described in the paper then they can perform an offline brute force
attack against