Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 674 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PPTP Vulnerabilities...

Kit Plummer
How vulnerable does turning on PPTP make the ASL firewall?  Is the biggest concern somebody cracking a user's password?

Kit


This thread was automatically locked due to age.
  • 0
    Well PPTPD is running is chroot enviroment, so that limits what if anything someone could do if they exploited some sort of bug. You can break out of a chroot jail, but as far as I know, that's pretty hard. On top of that I believe it runs as a very un-privlidged user. That's the daemon part of it. As for some one brute forcing a password, I don't belive that astaro has any "warning" feature (i.e. and e-mail that says "user bob has tried 20 times to login without success"). If someone were to crack/get a users password they will have access to whatever networks you have given to the pptp_pool. This should be very, very limited. specific protocols only, and possibly to only a specific network (like no  access to user systems)
    Hope that helps.
Unfiltered HTML