Starting a VPN connection

Paul Howarth paul at city-fan.org
Mon Nov 21 17:21:27 UTC 2005 

Dotan Cohen wrote:
> On 11/21/05, Kostas Sfakiotakis <kostassf at cha.forthnet.gr> wrote:
> 
>>Greetings Paul,
>>
>>Well am not an expert in VPN connections so this might be something stupid
>>but anyway here it goes .
>>
>>Paul Smith wrote:
>>
>>>On 11/20/05, Dotan Cohen <dotancohen at gmail.com> wrote:
>>>
>>>
>>>>>>I can't figure out how to get it to authorize with MS-CHAP. I have
>>>>>>checked "Require Microsoft point-to-point Encryption" under the
>>>>>>encryption menu. This is the output:
>>>>>>Using interface ppp1pptpconfig: monitoring interface ppp1
>>>>>>Connect: ppp1 <--> /dev/pts/2
>>>>>>Warning - secret file /etc/ppp/pap-secrets has world and/or group access
>>>>>>Warning - secret file /etc/ppp/pap-secrets has world and/or group access
>>
>>First of all here we have a permissions problem .  I guess a login as root
>>and then "chmod 700 /etc/ppp/pap-secrets" could resolve the problem .
>>
>>
>>>>>>PAP authentication succeeded
>>
>>Well the above line says PAP ( Password Authentication Protocol ) succeded
>>
>>How do we know that the VPN Server actually offers CHAP Authentication
>>and not just PAP Authentication since the two of them are entirely
>>different
>>things.
>>
>>
>>
>>>>>>I'm sorry to ask for the hand-holding. There just doesn't seem to be
>>>>>>any information on this available. When I get this working, I'll piece
>>>>>>together a howto on the subject. In the meantime, how do I get it to
>>>>>>authenticate with MS-CRAP?
>>
>>I have no knowledge of MS-CRAP ????? What's it's meaning ???
>>Does it  actually mean MS- CHAP as of ( MS - Chalenge Host Authentication
>>Protocol )
>>
>>Btw if there is a CHAP Authentication to be performed is there
>>any  /etc/ppp/chap-secrets file available ???
>>
>>
>>Kind Regards,
>>    Kostas
> 
> 
> I did a quick locate:
> [root at localhost ~]# locate chap
> /etc/ppp/chap-secrets
> /root/.kde/share/apps/RecentDocuments/chap_ms.h.desktop
> /usr/share/slib/chap.scm
> /usr/share/doc/HTML/en/kppp/chap.docbook
> /usr/include/pppd/chap_ms.h
> /usr/include/pppd/chap-new.h
> 
> I opened up the chap_ms.h file and it contains this line:
> # client	server	secret			IP addresses
> 
> But what could my secret be? I don't know.

Edit the file /etc/ppp/chap-secrets

Assuming you are trying to log into domain MYDOMAIN, username MYUSER, 
with password MYPW, try this:

# client		server			secret	IP addresses
MYDOMAIN\\MYUSER	PPTP			MYPW
PPTP			MYDOMAIN\\MYUSER	MYPW

Paul.

More information about the users mailing list