Microsoft says don't use PPTP and MS-CHAP
From http://h-online.com/-1672257 :
Quote:
Microsoft is warning of a serious security issue in MS-CHAP v2, an authentication system that is mainly used in Microsoft's Point-to-Point Tunneling Protocol (PPTP) VPN technology. Three weeks ago at the Black Hat conference, encryption expert Moxie Marlinspike presented the CloudCracker web service, which can crack any PPTP connection within 24 hours for $200.
|
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|