nanog mailing list archives
Re: Security problem in PPPoE connection
From: Joe Shen <joe_hznm () yahoo com sg>
Date: Mon, 13 Mar 2006 15:19:32 +0800 (CST)
What's your method to deal with such problem? WillCHAP in PPPoE help? That may help against password sniffing but won't help against sniffing traffic by an active attacker once the session has been established. Also, you'll have to revisit all CPE to explicitly disable PAP, or an active attacker could still steal the password if he impersonates the real PPPoE server.
If we enable CHAP on BRAS, is it enough that asking subscriber to enable Chap on MS-windows dial connection or Linux ? Need we install some other tools? Regards Joe __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - 1GB free storage! http://sg.whatsnew.mail.yahoo.com
Current thread:
- Security problem in PPPoE connection Joe Shen (Mar 11)
- Re: Security problem in PPPoE connection Peter Dambier (Mar 12)
- Re: Security problem in PPPoE connection Florian Weimer (Mar 12)
- Re: Security problem in PPPoE connection Niels Bakker (Mar 12)
- Re: Security problem in PPPoE connection Joe Shen (Mar 12)
- Re: Security problem in PPPoE connection Sean Donelan (Mar 13)
- Re: Security problem in PPPoE connection Joe Shen (Mar 12)
- Re: Security problem in PPPoE connection Florian Weimer (Mar 12)
- Re: Security problem in PPPoE connection Steven M. Bellovin (Mar 12)
- Re: Security problem in PPPoE connection Florian Weimer (Mar 12)
- Re: Security problem in PPPoE connection Steven M. Bellovin (Mar 12)
- Re: Security problem in PPPoE connection Joe Maimon (Mar 12)
- Re: Security problem in PPPoE connection Peter Dambier (Mar 12)