[pptp-server] Two quickees...

Philip Van Baren phil at vibrationresearch.com
Thu Nov 2 13:17:42 CST 2000 

I just confirmed that you can use PAP with pptpd.  My client machine was
Windows 2000, and I configured it to custom security settings with no
encryption and only PAP authentication enabled.

Note that I compiled pptpd using --with-pppd-ip-alloc so I specify the IP
address to assign (192.168.1.99) in pap-secrets, instead of using the pool
of addresses in /etc/pptpd.conf


------ /etc/pptpd.conf --------
debug
option /etc/ppp/options.pap
-------------------------------
------ /etc/ppp/options.pap ---
debug
kdebug 1
name gateway
mru 1450
mtu 1450
auth
require-pap
proxyarp
192.168.1.20:
-------------------------------
------ /etc/ppp/pap-secrets ---
phil gateway secret 192.168.1.99
-------------------------------

> -----Original Message-----
> From: pptp-server-admin at lists.schulte.org
> [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Ken McCord
> Sent: Thursday, November 02, 2000 3:16 PM
> Cc: pptp-server at lists.schulte.org
> Subject: Re: [pptp-server] Two quickees...
>
>
> 1) Hmmm...couldn't get pap to work, but I'm not using the mppe
> encryption yet.  The pap-secrets file was set up correctly (added the
> line *	<servername>	""	*), the /etc/ppp/options
> file had 'require-pap',
> and pptpd-options had 'require-pap' and '+pap' as well.  Services were
> restarted.  Did I miss something?  Perhaps authentication via pam is a
> possibility?
>
> 2)  Ok, I subscribed through http://www.moretonbay.com/vpn/pptp.html,
> which looks to be a bit out of date.  I'll update my bookmark.
>
> Thanks again,
>
> Ken McCord
>
>
> Philip Van Baren wrote:
> >
> > 1) Chap is required to use the mppe encryption.  Without mppe any ppp
> > authentication scheme should work, as long as both the client
> and server are
> > configured to use the same things.
> >
> > Another option is to apply the patch to use /etc/smbpasswd for chap
> > authentication, if you are already maintaining encrypted smb passwords.
> > (see the patches at poptop.lineo.com)
> >
> > 2) http://poptop.lineo.com/#mailinglist
> >
> > > -----Original Message-----
> > > From: pptp-server-admin at lists.schulte.org
> > > [mailto:pptp-server-admin at lists.schulte.org]On Behalf Of Ken McCord
> > > Sent: Tuesday, October 31, 2000 10:45 PM
> > > To: pptp-server at lists.schulte.org
> > > Subject: [pptp-server] Two quickees...
> > >
> > >
> > > I have two quick questions...
> > >
> > > 1) I have poptop installed and working on a server using chap
> > > authentication.  Rather than having to add a user to
> > > /etc/ppp/chap-secrets every time they will use pptp to access our
> > > network, is there any way to change the authentication to use pap
> > > instead of chap.  My understanding is that I can authenticate
> via pap to
> > > /etc/passwd, in addition to having an entry in /etc/ppp/pap-secrets.
> > >
> > > 2) Is there a searchable archive of the list?
> > >
> > > Thanks,
> > >
> > > Ken McCord
> > > _______________________________________________
> > > pptp-server maillist  -  pptp-server at lists.schulte.org
> > > http://lists.schulte.org/mailman/listinfo/pptp-server
> > > List services provided by www.schulteconsulting.com!
> > >
> >
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulteconsulting.com!
> _______________________________________________
> pptp-server maillist  -  pptp-server at lists.schulte.org
> http://lists.schulte.org/mailman/listinfo/pptp-server
> List services provided by www.schulteconsulting.com!
>

More information about the pptp-server mailing list