[89390] in North American Network Operators' Group
Re: Security problem in PPPoE connection
daemon@ATHENA.MIT.EDU (Florian Weimer)
Sun Mar 12 15:01:10 2006
From: Florian Weimer <fw@deneb.enyo.de>
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
Cc: joe_hznm@yahoo.com.sg, nanog@merit.edu
Date: Sun, 12 Mar 2006 21:00:17 +0100
In-Reply-To: <20060312145045.a29c8209.smb@cs.columbia.edu> (Steven
M. Bellovin's message of "Sun, 12 Mar 2006 14:50:45 -0500")
Errors-To: owner-nanog@merit.edu
* Steven M. Bellovin:
> CHAP can be bidirectional.
I stand corrected.
However, the value of this type of authentication is rather
questionable if the underlying communication channel is so horribly
insecure.