[pptp-server] mschap-v2 auth against en-hashed secrets

Jim Bowen j.bowen at CYPROTEX.com
Thu Jun 6 09:15:52 CDT 2002

Does anyone know of a way to get ppp to auth against either a separate NT
(or samba) server, or against NT password hashes instead of plaintext
passwords in the /etc/ppp/chap-secrets file.
I tried the obvious one of just putting the LM hash into the secret field
(works with unix-crypt in pap-secrets), but all I got for that was a
segfault :(
Our domain controller is on NT, but I've managed to convince everyone to run
the VPN server on linux instead, using PoPtoP (great app), but I don't like
keeping plaintext secrets on a server that has an internet connection. I'm
stuck with...um.... reverse-engineering their passwords at the moment, which
can take a couple of days for the better users :)
Email    :  <mailto:j.bowen at cyprotex.com> j.bowen at cyprotex.com
Tel        : 01625 505112
Fax       : 01625 505199

This E-Mail is sent in confidence for the addressee only.  Unauthorised recipients must preserve this confidentiality and should please advise the sender immediately by telephone (+44 (0)870 241 6492) and return the original E-Mail to the sender without taking a copy. Cyprotex has taken all reasonable precautions to ensure that no viruses are transmitted from Cyprotex to any third party.  Cyprotex accepts no responsibility for any loss or damage resulting directly or indirectly from the use of this E-Mail or the contents.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.schulte.org/mailman/private/pptp-server/attachments/20020606/7d5c95d7/attachment.html>

More information about the pptp-server mailing list