From: Curt Purdy (purdy@tecman.com)
Date: Wed Dec 22 2004 - 15:05:07 EST
Dan Tesch wrote:
> I am not very up on VPN protocols, I am testing a network
> that has an edge router which has several site-to-site VPN's
> set up and several clients connecting to it via MS PPTP client.
<snip>
You did not mention the site-to-site vpn vendor, but sounds like ipsec to
me. Your easiest shot at compromise is with PPTP. It was an insecure
format from the beginning. It took cisco to show Microsoft how to do VPN.
Curt Purdy CISSP, GSEC, CNE, MCSE+I, CCDA
Information Security Engineer
DP Solutions
-----------------------------
If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- former White House cybersecurity czar Richard Clarke
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:11 EDT