DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

PPTP insecurity / bug - EAP-TLS ??

  • reetp
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
07 Feb 2013 12:16 #1 by reetp
PPTP insecurity / bug - EAP-TLS ?? was created by reetp
I have some 2820 routers and wanted to be able to usee PPTP to VPN occasionally.

Having read around it would that normal PAP/MSCHAP authentication for PPTP is more full of holes than gorgonzola cheese and I wondered if PPTP will support EAP-TLS as it does not appear to at the minute ?

https://www.cloudcracker.com/blog/2012/07/29/cracking-ms-chap-v2/

"1) All users and providers of PPTP VPN solutions should immediately start migrating to a different VPN protocol. PPTP traffic should be considered unencrypted.

2) Enterprises who are depending on the mutual authentication properties of MS-CHAPv2 for connection to their WPA2 Radius servers should immediately start migrating to something else. "

It would seem that effecively PAP/MSCHAP authentication is deprecated and should be considered a bug that needs fixing.

Anyone (Draytek perhaps ?) have any thoughts on this ??

B. Rgds
John

Please Log in or Create an account to join the conversation.