WAN & VPN Security

Donal Farrell 0161977 at student.ul.ie
Mon Aug 29 12:46:53 PDT 2005


Any page on this on irlgov.ie or anything??

On Sun, 2005-08-28 at 10:49, Declan Moriarty wrote:
> Recently, Somebody Somewhere wrote these words
> > Declan Moriarty wrote:
> > > The Government here (if you would call it that) has a
> > > decentralisation policy which is resulting in WAN connectivity for
> > > each department to a central VPN.
> > > 
> > > Is this remotely secure? Even if it is, is it hackable? I am
> > > presuming windows, and ssh are also involved. But wan means 2 people
> > > broadcast, and surely any third one can pick them both up.
> > > 
> > 
> > Sure, you can pick up anything...whether you can make sense of what
> > you 'pick up' is the question.  If this is just involving windows
> > connectivity issues, have a google for 'VPN', 'MSCHAT-V2' and 'MPPE'
> > and related mppe patch(m)es(s) for linux kernel.  Security is pretty
> > good but certainly not unbreakable.  I have MS style VPN working on
> > LFS for server side (for remote VPN sessions from windows PCs) should
> > you need assistance in coping with it.  I can't imagine it being more
> > difficult setting up the client....this assuming you are dealing with
> > MS VPN.  If not, you should be searching for L2TP, or maybe even Cisco
> > variants which I know nothing about except that they require a
> > separate client on MS boxes.
> > 
> > Hope that helps you find what it is you are looking for.
> 
> I was just imagining 
> 	a) there could be money in security Audits
> 	b) Every Secret Service will be falling all over the place
> laughing at how stupid this is.
> 
> 
> -- 
> 
> 	With best Regards,
> 
> 
> 	Declan Moriarty.




More information about the blfs-support mailing list