Traduisez - Übersetzen - Traduzca - Traduza - Tradurre - Translate

Re: PPP suddenly not working.

John Paul Morrison (jmorriso@bogomips.com)
Thu, 16 Jul 1998 14:34:09 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Dave Michelson: "Re: Linux Brochures"
Previous message: Jared Proudfoot: "Re: VanLUG's temporary website"
Next in thread: Curt Sampson: "Re: PPP suddenly not working."

>
> In that situation, I consider CHAP to potentially provide less
> security, since you must have unencrypted passwords at both ends.
> That means your ISP is guaranteed to know your password. With PAP,
> the ISP can keep a one-way encryption of the password rather than
> the password itself, and thus not be able to see what your password
> is.

Not true - the plaintext password in PAP is readily displayable
in the pppd debug logs, even if the ISP keeps it in /etc/passwd for
example. So with PAP, not only is your ISP guaranteed to know your
password, so is anyone tapping the phone line, serial link, or sniffing
the ethernet between the access server and the Radius/TACACS/password
server :-)

>
> cjs
>
> Curt Sampson cjs@portal.ca Info at http://www.portal.ca/
> Internet Portal Services, Inc. Through infinite mist, software reverberates
> Vancouver, BC (604) 257-9400 In code possess'd of invisible folly.
>
>

---------------------------------------------------------------------------
BogoMIPS Research Labs -- bogosity research & simulation -- VE7JPM --
jmorriso@bogomips.com ve7jpm@ve7jpm.ampr.org jmorriso@ve7ubc.ampr.org
---------------------------------------------------------------------------

Next message: Dave Michelson: "Re: Linux Brochures"
Previous message: Jared Proudfoot: "Re: VanLUG's temporary website"
Next in thread: Curt Sampson: "Re: PPP suddenly not working."