[pptp-server] Forcing encryption (was: Optimizing pppd for PPTP)
Nate Carlson
natecars at real-time.com
Thu Mar 16 12:04:50 CST 2000
On Thu, 16 Mar 2000, Martin Mueller wrote:
> Hi all and thanks for your work,
>
> On Thu, Mar 16, 2000 at 07:21:58AM -0400, Patrick Reid wrote:
> >
> > 1) Require 128-bit, stateless encryption on the server side
> > I can refuse 40-bit encryption, but I can't keep someone from connecting
> > with no encryption or in stateful mode (i.e. only one key). I know it is
> > possible to force my clients to only use strong encryption, but this doesn't
> > keep people from trying to exploit the PPTP security issues for Microsoft's
> > implementation.
>
> Ok, here are the patches to pppd-2.3.11 to require encryption. The new
> options are "require-mppe" and "require-mppe-stateless". You must first
> aply the MPPE patches for pppd and then this one.
>
> bye
> MM
>
THANK YOU! We've been waiting for this forever. Rebuilding pppd rpm's and
testing as we speak... :)
--
Nate Carlson <natecars at real-time.com> | Phone : (612)943-8700
http://www.real-time.com | Fax : (612)943-8500
More information about the pptp-server
mailing list