From: Peter Van Epp (vanepp@sfu.ca)
Date: Thu Apr 03 2003 - 15:33:18 EST
While I don't remember if it included tools, there was a paper on
pen-testing an IPSEC gateway at the Cansecwest conference 2 years ago. The
gist of it was that it is possible to cause a (defeatable) denial of service
in the first 12 bytes of an initial connection it was otherwise pretty
secure. That of course doesn't necessarily go for the management web interface
on the VPN gateway (there was also a paper on penetrating those at the same
conference). That should at least give you a place to start poking :-).
I believe the web site is www.cansecwest.com (google will find it in any case).
Peter Van Epp / Operations and Technical Support
Simon Fraser University, Burnaby, B.C. Canada
top spam and e-mail risk at the gateway.
SurfControl E-mail Filter puts the brakes on spam & viruses
and gives you the reports to prove it. See exactly how much
junk never even makes it in the door. Free 30-day trial:
http://www.securityfocus.com/SurfControl-pen-test
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:31 EDT