Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


IPsec & related Windows option

  • Please log in to reply
2 replies to this topic

#1 BMXRcr


  • Members
  • 6 posts
  • Local time:12:10 PM

Posted 29 January 2011 - 03:13 PM

Hi -- I noticed in Vista under Control panel -> Programs -> Add/Remove Services (I think -- where you have all the checkboxes for games, etc), a section on Security with 5 or so options (including IPsec & others).

Question is why would you not want to activate all these security settings? I'm reading about them (IPSec in particular is a little opaque, at least for me, though I know its encryption)? Wouldn't you want to have all of them checked off? There must be some downside, but any explanations or materials appreciated (incidentally these don't show up in Win 7, though we suspect that machine is a little sick). Thanks.

BC AdBot (Login to Remove)


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,716 posts
  • Gender:Male
  • Local time:07:10 PM

Posted 29 January 2011 - 04:15 PM

IPSec in particular is a little opaque, at least for me, though I know its encryption

IPsec is a network protocol for IP. It provides your IP communications with authentication, integrity checks and confidentiality, depending on the options you activate.
But every machine you want to communicate with also needs IPsec enabled. It's typically done in a LAN, not on the Internet.

To connect securely to servers on the Internet, you use other encrypted protocols, like TLS (say HTTPS).

Edited by Didier Stevens, 29 January 2011 - 04:15 PM.

Didier Stevens

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019


If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.


Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"

#3 quietman7


    Bleepin' Janitor

  • Global Moderator
  • 51,739 posts
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:10 PM

Posted 30 January 2011 - 12:50 AM

Here's some reading material if you want to get into more specifics.

Internet Protocol Security - IPsec
An Inside Look at IPSec in Vista
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users