[cryptography] PPTP Security

Eren Türkay erent at skyatlas.com
Wed Mar 11 08:46:05 EDT 2015


Hello,

I was wondering the security of PPTP. I know that MSCHAPv2 is vulnerable
and it is not recommended to use MSCHAPv2 alone [0][1]. The recommended
solution seems to use MSCHAPv2+PEAP accordingly to Microsoft but I'm not
sure how secure it is as I don't know the state of MSCHAPv2+PEAP. Does
anyone know about MSCHAPv2+PEAP implementation and security of it?

I am thinking of migrating to OpenVPN but it takes a little bit time
configuring the routers. The reason why PPTP was selected in the first
place was the ease of configuration.


[0] https://technet.microsoft.com/en-us/library/security/2743314.aspx
[1] http://www.net-security.org/secworld.php?id=13342

Regards,

-- 
Eren Türkay, System Administrator
https://skyatlas.com/ | +90 212 483 7555

Yildiz Teknik Universitesi Davutpasa Kampusu
Teknopark Bolgesi, D2 Blok No:107
Esenler, Istanbul Pk.34220

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.randombit.net/pipermail/cryptography/attachments/20150311/64befdf0/attachment.asc>


More information about the cryptography mailing list