Re: XP client & Server authentication
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 05/26/05
- Next message: Steven L Umbach: "Re: Worm vs a Trojan Horse -- differences?"
- Previous message: Steven L Umbach: "Re: Autoenrollment failed for Domain Controller"
- In reply to: Robin: "XP client & Server authentication"
- Next in thread: Robin: "Re: XP client & Server authentication"
- Reply: Robin: "Re: XP client & Server authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 May 2005 15:45:15 -0500
I am a bit confused in that you say you are using l2tp and then you say
wifi? Maybe you are using both?? How is it trivial to do a man in the middle
attack using 802.1X? --- Steve
"Robin" <robin.hartley@alcatel.co.nz> wrote in message
news:1116994834.848257.152420@g49g2000cwa.googlegroups.com...
> Hi All,
> I currently have XP running the L2TP/IPSec client to a network server.
> I'm using X.509 certificates & can connect fine.
>
> The issue I have is how to configure the XP client to check more than
> just the signature on the server certificate.
> I'm after something like what Cisco call "distinguished name checking"
> where it will match fields in the certificate.
>
> The problem is that over WiFi it's trivial to do a "man in the middle"
> attack without verifying the server certificate. Any help appreciated.
>
> Regards,
> Robin
>
- Next message: Steven L Umbach: "Re: Worm vs a Trojan Horse -- differences?"
- Previous message: Steven L Umbach: "Re: Autoenrollment failed for Domain Controller"
- In reply to: Robin: "XP client & Server authentication"
- Next in thread: Robin: "Re: XP client & Server authentication"
- Reply: Robin: "Re: XP client & Server authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
