On 24/06/10 18:00, MJ Ray wrote:
Laurie Brown wrote about two of the best: OpenVPN and IPSEC (using the native Linux IPsec stack, or the Openswan KLIPS stack?).
Ah, I didn't know that OpenVPN & IPSEC could be used in peer-to-peer configurations. I'll go hunting again.
Serious security vulnerabilities have been found in PPTP if it uses MSCHAP-v1, MSCHAP-v2 and/or MPPE (which most installations do). Is EAP-TLS still secure? How many people use it?
I'd happily ditch PPTP altogether but the site I have to make this work with will keep PPTP for their own use, so having my box connect to it is no less secure (and possible more secure) than running parallel VPN solutions.
I'd love to see PPTP disappear, for sure. But then I'd love to see Windows-centric environments disappear so it's hardly a surprise.