[pptp-server] Ppp/pptpd modified for LDAP
Adam Tauno Williams
awilliam at whitemice.org
Sun Mar 4 20:29:08 CST 2001
> Will you make your patch available.
My modified pppd is available at ldapconsole.sourceforge.net. It's not a patch, as I don't know how the make one. I just took pppd, applied all the patches, including smbpasswd, and then changed it to use the LDAP API to get the NT password hash.
>>>1) If you have configured your PopTop/PPPD system to re-direct PPTP
>>>tunnel authentication to use the libsmbpw.o lib's (smbpasswd), then your
>>>system appears to be vulnerable to the blank user/pass exploit mentioned in
>>>this thread.
>>>2) Those of you who are still using the chap-secrets file (no re-direct)
>>>for tunnel authentication are NOT vulnerable to the blank user/pass
>>>exploit mentioned in this thread. I just verified this on my PopTop server!
>>>I do >not use the re-direct to libsmbpw.o
>>FWIW, I've tested my ppp/pptpd modified for LDAP authentication and been unable
>>to duplicate this exploit.
More information about the pptp-server
mailing list