SOLVED: Re: [Openswan Users] L2TP & MTU Problem?
Jacco de Leeuw
jacco2 at dds.nl
Sun Jul 25 17:50:09 CEST 2004
Dennis Leist schreef:
>> By default Windows wants to use MS-CHAP, unless the option
>> "Require data encryption" is unchecked, or unless you add CHAP
>
> But am I right, that even PAP for l2tpd is safe enough, because the
> whole connection is secured by openswan?
Yes, that's correct. The PAP password is not encrypted, but that is not much
of an issue since the whole connection is encrypted through IPsec. Using PAP
even has the advantage you can delegate PPP authentication to some other
server, e.g. RADIUS or Windows/Samba.
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users
mailing list