Webone blocking port 25??

Alex Satrapa grail at goldweb.com.au
Sun Jul 28 17:56:04 EST 2002

On Friday, July 26, 2002, at 04:44 , Sam Couter wrote:

> PPP over SSH is evil. PPTP is pretty easy to set up (and Windows boxes
> can do it), but doesn't do encryption on Linux, and the encryption on
> Windows is trivially cracked. I've also found PPTP tunnels to be a bit
> unstable.

Subsequent to the famous "Microsoft Windows 9x PPTP Implementation is 
Poopie" research, the major bugs were fixed (namely - weak 
authentication) [1].  While not being particularly useful (still using 
weak keys), the newer versions of Microsoft Windows 9x PPTP (aka "VPN") 
aren't as trivial to crack as, say, WEP.

But I agree with your evaluation on the lack of stability.

> The best VPN solution that I've found is OpenVPN. It's fairly easy to
> set up, and uses TLS and X.509 certificates for connection security. The
> tunnels are also rock-solid.

So solid, in fact, that your ADSL connection can disappear and OpenVPN 
still has the tun device configured and trying to send packets half a 
day later ;)


[1] "Cryptanalysis of Microsoft's PPTP Authentication Extensions 
(MS-CHAPv2)", http://www.counterpane.com/pptpv2-paper.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 225 bytes
Desc: not available
Url : http://lists.samba.org/archive/linux/attachments/20020728/60bcffee/attachment.bin

More information about the linux mailing list