PPTP und MSCHAP-V2
Markus Wigge
markus at cultcom.de
Wed Jan 29 10:48:01 CET 2003
Tag,
> CHAP und MSCHAP sind "verschluesselt" in dem sie nur die checksumme des
> passwords + einer challenge uebertragen. Das "Verschluesselt" wird sich
> nur auf die Nutzdaten beziehen. Solange du aber kein debugging in deinem
> pppd anmachst und hier mal das debug log schickst wird dir das keiner
> genau sagen koennen.
Ok, dann habe ich zumindest schonmal richtig vermutet ... hier noch der
Log-Auszug der gescheiterten Verbindung (/var/log/debug):
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap 81> <magic 0x4adc43d0> <pcomp> <accomp>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP ConfReq id=0x0 <magic 0x3f223d19> <pcomp> <accomp> <callback CBCP> <mrru 1614> <endpoint [local:8e.c6.4b.cd.d1.5c.4f.dd.96.ff.4f.dc.76.77.80.51.00.00.00.03]>]
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP ConfRej id=0x0 <mrru 1614>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap 81> <magic 0x4adc43d0> <pcomp> <accomp>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP ConfReq id=0x1 <magic 0x3f223d19> <pcomp> <accomp> <callback CBCP> <endpoint [local:8e.c6.4b.cd.d1.5c.4f.dd.96.ff.4f.dc.76.77.80.51.00.00.00.03]>]
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP ConfAck id=0x1 <magic 0x3f223d19> <pcomp> <accomp> <callback CBCP> <endpoint [local:8e.c6.4b.cd.d1.5c.4f.dd.96.ff.4f.dc.76.77.80.51.00.00.00.03]>]
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP EchoReq id=0x0 magic=0x4adc43d0]
Jan 29 10:44:10 kermit pppd[16880]: cbcp_lowerup
Jan 29 10:44:10 kermit pppd[16880]: want: 2
Jan 29 10:44:10 kermit pppd[16880]: sent [CHAP Challenge id=0x1 <8311f9edd9fb2d5d7048f8fb91bcc26f>, name = "vpn-gw1"]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP code=0xc id=0x2 3f 22 3d 19 4d 53 52 41 53 56 35 2e 30 30]
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP CodeRej id=0x2 0c 02 00 12 3f 22 3d 19 4d 53 52 41 53 56 35 2e 30 30]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP code=0xc id=0x3 3f 22 3d 19 4d 53 52 41 53 2d 31 2d 5a 48 41 44 55 4d]
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP CodeRej id=0x3 0c 03 00 16 3f 22 3d 19 4d 53 52 41 53 2d 31 2d 5a 48 41 44 55 4d]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP EchoRep id=0x0 magic=0x3f223d19]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CHAP Response id=0x1 <8d3ad2407b075cfad65f0c50941d14ad0000000000000000fa9bffafc5632f856f34faf69f468b57ddc2f2eeddbc105f00>, name = "test"]
Jan 29 10:44:10 kermit pppd[16880]: sent [CHAP Success id=0x1 "S=0471ED92372BC04BA8A82070B1C8F04558C34551"]
Jan 29 10:44:10 kermit pppd[16880]: cbcp_open
Jan 29 10:44:10 kermit pppd[16880]: cbcp_req CONF_NO
Jan 29 10:44:10 kermit pppd[16880]: sent [CBCP Request id=0x1 < NoCallback>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CBCP Response id=0x1 < NoCallback>]
Jan 29 10:44:10 kermit pppd[16880]: CBCP_RESP received
Jan 29 10:44:10 kermit pppd[16880]: length: 2
Jan 29 10:44:10 kermit pppd[16880]: Callback: none
Jan 29 10:44:10 kermit pppd[16880]: cbcp_ack cb_type=2
Jan 29 10:44:10 kermit pppd[16880]: cbcp_ack CONF_NO
Jan 29 10:44:10 kermit pppd[16880]: sent [CBCP Ack id=0x1 < NoCallback>]
Jan 29 10:44:10 kermit pppd[16880]: sent [IPCP ConfReq id=0x1 <addr 10.0.1.1> <compress VJ 0f 01>]
Jan 29 10:44:10 kermit pppd[16880]: sent [CCP ConfReq id=0x1 <deflate 15> <deflate(old#) 15> <mppe 1 0 0 60> <bsd v1 15>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CCP ConfReq id=0x4 <mppe 1 0 0 e1>]
Jan 29 10:44:10 kermit pppd[16880]: sent [CCP ConfNak id=0x4 <mppe 1 0 0 60>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [IPCP ConfReq id=0x5 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-wins 0.0.0.0> <ms-dns3 0.0.0.0> <ms-wins 0.0.0.0>]
Jan 29 10:44:10 kermit pppd[16880]: sent [IPCP ConfRej id=0x5 <ms-wins 0.0.0.0> <ms-wins 0.0.0.0>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [IPCP ConfRej id=0x1 <compress VJ 0f 01>]
Jan 29 10:44:10 kermit pppd[16880]: sent [IPCP ConfReq id=0x2 <addr 10.0.1.1>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CCP ConfRej id=0x1 <deflate 15> <deflate(old#) 15> <bsd v1 15>]
Jan 29 10:44:10 kermit pppd[16880]: sent [CCP ConfReq id=0x2 <mppe 1 0 0 60>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CCP ConfReq id=0x6 <mppe 1 0 0 40>]
Jan 29 10:44:10 kermit pppd[16880]: sent [CCP ConfRej id=0x6 <mppe 1 0 0 40>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [IPCP ConfReq id=0x7 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
Jan 29 10:44:10 kermit pppd[16880]: sent [IPCP ConfNak id=0x7 <addr 10.0.1.2> <ms-dns1 80.66.11.20> <ms-dns3 80.66.11.20>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [IPCP ConfAck id=0x2 <addr 10.0.1.1>]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [CCP ConfNak id=0x2 <mppe 1 0 0 40>]
Jan 29 10:44:10 kermit pppd[16880]: sent [CCP ConfReq id=0x3]
Jan 29 10:44:10 kermit pppd[16880]: rcvd [LCP TermReq id=0x8 "?\"=\031\000<\37777777715t\000\000\002\37777777746"]
Jan 29 10:44:10 kermit pppd[16880]: cbcp_lowerdown
Jan 29 10:44:10 kermit pppd[16880]: sent [LCP TermAck id=0x8]
Jan 29 10:44:10 kermit kernel: compress rejected: opt_len=32,o[0]=12,o[1]=6
bye
Markus
More information about the Linux
mailing list