13 Mar
2006
13 Mar
'06
2:19 a.m.
What's your method to deal with such problem? Will CHAP in PPPoE help?
That may help against password sniffing but won't help against sniffing traffic by an active attacker once the session has been established. Also, you'll have to revisit all CPE to explicitly disable PAP, or an active attacker could still steal the password if he impersonates the real PPPoE server.
If we enable CHAP on BRAS, is it enough that asking subscriber to enable Chap on MS-windows dial connection or Linux ? Need we install some other tools? Regards Joe __________________________________ Do you Yahoo!? New and Improved Yahoo! Mail - 1GB free storage! http://sg.whatsnew.mail.yahoo.com