VULHUB ™

VTun is a Virtual Private Network (VPN) daemon designed for Linux and Unix based systems. It acts as a tunnel for a network interface, and embeds all communication into a TCP stream after encryption is applied. This allows private network communication to occur through a larger network. VTun uses the Blowfish encryption algorithm in electronic code book (ECB) mode. The encryption key is derived from a shared secret defined when VTun is configured. Fundamental properties of ECB mode ciphers may have an impact on the security of VTun based communications. An attacker may be able to detect repeated patterns in communication, as identical plaintext blocks will result in identical encrypted blocks. An attacker able to modify the data in transit may also mount a replay attack, possibly subverting the communication without breaking the underlying encryption.

VTun is a Virtual Private Network (VPN) daemon designed for Linux and Unix based systems. It acts as a tunnel for a network interface, and embeds all communication into a TCP stream after encryption is applied. This allows private network communication to occur through a larger network. VTun uses the Blowfish encryption algorithm in electronic code book (ECB) mode. The encryption key is derived from a shared secret defined when VTun is configured. Fundamental properties of ECB mode ciphers may have an impact on the security of VTun based communications. An attacker may be able to detect repeated patterns in communication, as identical plaintext blocks will result in identical encrypted blocks. An attacker able to modify the data in transit may also mount a replay attack, possibly subverting the communication without breaking the underlying encryption.