[VPN] Dictionary Attack to existing VPN-Accounts

Martin Peikert lists at nolog.org
Wed Mar 26 03:43:57 EST 2003


Hello,

Nil-Pointer wrote:
> Hi,
> 
> I read a lot about Microsofts PPTP implementation on this and other 
> sites they used for realisation of their VPN. All I found said, that 
> it's very unsecure. But is there a way (perhaps an existent program) to 
---8<---

take a look at http://mopo.informatik.uni-freiburg.de/pptp_mschapv2/
"Exploiting known security holes in Microsoft's PPTP Authentication 
Extensions (MS-CHAPv2)"

HTH
GTi




More information about the VPN mailing list