[pptp-server] PPTP Authentication via PAM
Chuck Flink
cwf at infosecana.com
Tue Nov 30 13:57:12 CST 1999
Note: The architecture of PPTP, as a graft onto PPP, means that
"clear text" authentication is an extremely bad choice of options.
Authentication takes place before negotiation of an encryption
option under PPTP. If simple (clear text) password authentication
method is used, you will be passing your password over the
Internet in clear text.... in the case of PPP over dial-up, the clear
text method is quite reasonable. In the case of PPP over the open
Internet, this is quite risky. PPTP should never be used with less
than CHAP. ...regardless of if encryption is negotiated AFTER
PPP authentication is complete.
----- Original Message -----
From: "Nate Carlson" <natecars at real-time.com>
To: "PoPToP mailing list" <pptp-server at lists.schulte.org>
Sent: Monday, November 29, 1999 2:42 PM
Subject: [pptp-server] PPTP Authentication via PAM
> Hi,
>
> Is it possible to have PPTP users authenticated via pam instead of
> chap-secrets? I'd really prefer to allow my users to have the same
> password for VPN as e-mail and such. Thanks!
>
> --
> Nate Carlson <carlson at real-time.com> | Phone : (612)943-8700
> http://www.real-time.com | Fax : (612)943-8500
>
>
> _______________________________________________
> pptp-server maillist - pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulte.org!
>
>
More information about the pptp-server
mailing list