WAN & VPN Security

Declan Moriarty junk_mail at iol.ie
Sun Aug 28 02:49:21 PDT 2005


Recently, Somebody Somewhere wrote these words
> Declan Moriarty wrote:
> > The Government here (if you would call it that) has a
> > decentralisation policy which is resulting in WAN connectivity for
> > each department to a central VPN.
> > 
> > Is this remotely secure? Even if it is, is it hackable? I am
> > presuming windows, and ssh are also involved. But wan means 2 people
> > broadcast, and surely any third one can pick them both up.
> > 
> 
> Sure, you can pick up anything...whether you can make sense of what
> you 'pick up' is the question.  If this is just involving windows
> connectivity issues, have a google for 'VPN', 'MSCHAT-V2' and 'MPPE'
> and related mppe patch(m)es(s) for linux kernel.  Security is pretty
> good but certainly not unbreakable.  I have MS style VPN working on
> LFS for server side (for remote VPN sessions from windows PCs) should
> you need assistance in coping with it.  I can't imagine it being more
> difficult setting up the client....this assuming you are dealing with
> MS VPN.  If not, you should be searching for L2TP, or maybe even Cisco
> variants which I know nothing about except that they require a
> separate client on MS boxes.
> 
> Hope that helps you find what it is you are looking for.

I was just imagining 
	a) there could be money in security Audits
	b) Every Secret Service will be falling all over the place
laughing at how stupid this is.


-- 

	With best Regards,


	Declan Moriarty.



More information about the blfs-support mailing list