From: johnjmedway <jm...@io...> - 2002-09-08 00:08:37
|
Sorry, I should have mentioned that I did comment out the line you mention. I'm not too keen about putting clear text passwords in the chap-secrets file. Surely there's another way. At 22:59 09/07/2002 +0100, John Cronin wrote: >And remove > >* * &/etc/samba/smbpasswd * > >If that doesn't work, try specifying passwords in chap-secrets > >e.g. > >user1 * secret-password * > > >-----Original Message----- >From: pop...@li... >[mailto:pop...@li...]On Behalf Of >johnjmedway >Sent: 07 September 2002 19:25 >To: John Cronin >Cc: johnjmedway; pop...@li... >Subject: RE: [Poptop-server] Wrong Uname/Passwd still authenticates???? > > >No difference. > > >At 21:22 09/06/2002 +0100, John Cronin wrote: > >Try specifying each user individually in chap-secrets, e.g. > > > >user1 * &/etc/samba/smbpasswd * > >user2 * &/etc/samba/smbpasswd * > > > >John. > > > > > >-----Original Message----- > >From: pop...@li... > >[mailto:pop...@li...]On Behalf Of > >johnjmedway > >Sent: 06 September 2002 18:22 > >To: pop...@li... > >Cc: jm...@io... > >Subject: [Poptop-server] Wrong Uname/Passwd still authenticates???? > > > > > >I noticed a bug listed on the Sourceforge page, suggesting that PoPToP > >allows connection regardless of the password offered. This is likely a > >config error on my part, but it looks like it assigns an IP address, > >sets up routing, et al., for the ppp network connection, regardless of > >username or password. I'd appreciate some assist with this. > > > >My /etc/ppp/chap-secrets file looks like: > > > > ># Secrets for authentication using CHAP > > ># client server secret IP addresses > > >####### redhat-config-network will overwrite this part!!! (begin) > >########## > > >####### redhat-config-network will overwrite this part!!! (end) > >############ > > >* * &/etc/samba/smbpasswd * > > ># > > > >Which I saw in one of the examples. The Samba server correctly > >authenticates for people trying to access network shares on the LAN, > >though, so it doesn't have a problem in and of itself (just maybe how I'm > >using it here...). > > > >My /etc/ppp/options.pptpd file looks like: > > > > >## CHANGE TO SUIT YOUR SYSTEM > > >lock > > > > > >## turn pppd syslog debugging on > > >#debug > > > > > >## change 'pptpd' to whatever you specify as your server name in > >chap-secrets > > >name pptpd > > > > > >proxyarp > > > > > ># This option applies if you use ppp with chapms-strip-domain patch > > >#chapms-strip-domain > > > > > >+chap > > ># These options apply if you use ppp with mppe patch > > ># NB! You should also apply the ChapMS-V2 patch > > >#-chap > > >#-chapms > > >#+chapms-v2 > > >#mppe-128 > > >#mppe-stateless > > > > > ># These options will tell ppp to pass on these to your clients > > ># To use ms-dns or ms-dns in options.pptpd it must exist in > >/etc/resolv.conf > > >#ms-wins your.server.here > > >#ms-dns your.server.here > > >ms-dns 10.10.10.21 > > > > > >Following is the relevant goo from /var/log/messages. I notice one curious > >error in messages "modprobe: Can't locate module ppp-compress-21", but > >nothing else interesting, or at least that I grok as such. > > > > >Sep 6 12:06:06 polaris pptpd[4504]: CTRL: Client 192.168.1.119 control > > >connection started > > >Sep 6 12:06:06 polaris pptpd[4504]: CTRL: Starting call (launching pppd, > > >opening GRE) > > >Sep 6 12:06:06 polaris pppd[4505]: pppd 2.4.1 started by root, uid 0 > > >Sep 6 12:06:06 polaris pppd[4505]: Using interface ppp0 > > >Sep 6 12:06:06 polaris pppd[4505]: Connect: ppp0 <--> /dev/pts/7 > > >Sep 6 12:06:06 polaris /etc/hotplug/net.agent: assuming ppp0 is already >up > > >Sep 6 12:06:06 polaris modprobe: modprobe: Can't locate module > > >ppp-compress-21 > > >Sep 6 12:06:06 polaris modprobe: modprobe: Can't locate module > > >ppp-compress-21 > > >Sep 6 12:06:06 polaris pppd[4505]: CHAP peer authentication succeeded >for > > >smeg > > >Sep 6 12:06:06 polaris pppd[4505]: Cannot determine ethernet address for > > >proxyARP > > >Sep 6 12:06:06 polaris pppd[4505]: local IP address 10.10.20.1 > > >Sep 6 12:06:06 polaris pppd[4505]: remote IP address 10.10.20.12 > > >Sep 6 12:06:06 polaris pppd[4505]: CCP terminated by peer > > >Sep 6 12:06:06 polaris pppd[4505]: Compression disabled by peer. > > >Sep 6 12:06:47 polaris pppd[4505]: LCP terminated by peer > > >Sep 6 12:06:47 polaris pppd[4505]: Modem hangup > > >Sep 6 12:06:47 polaris pppd[4505]: Connection terminated. > > >Sep 6 12:06:47 polaris pppd[4505]: Connect time 0.7 minutes. > > >Sep 6 12:06:47 polaris pppd[4505]: Sent 235 bytes, received 1507 bytes. > > >Sep 6 12:06:47 polaris /etc/hotplug/net.agent: NET unregister event not > > >supported > > >Sep 6 12:06:47 polaris pppd[4505]: Exit. > > >Sep 6 12:06:53 polaris pptpd[4504]: CTRL: EOF or bad error reading ctrl > > >packetlength. > > >Sep 6 12:06:53 polaris pptpd[4504]: CTRL: couldn't read packet header > >(exit) > > >Sep 6 12:06:53 polaris pptpd[4504]: CTRL: CTRL read failed > > >Sep 6 12:06:53 polaris pptpd[4504]: CTRL: Client 192.168.1.119 control > > >connection finished > > > > > > > >------------------------------------------------------- > >This sf.net email is sponsored by: OSDN - Tired of that same old > >cell phone? Get a new here for FREE! > >https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 > >_______________________________________________ > >Poptop-server mailing list > >Pop...@li... > >https://lists.sourceforge.net/lists/listinfo/poptop-server > > > > > > > >------------------------------------------------------- > >This sf.net email is sponsored by: OSDN - Tired of that same old > >cell phone? Get a new here for FREE! > >https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 > >_______________________________________________ > >Poptop-server mailing list > >Pop...@li... > >https://lists.sourceforge.net/lists/listinfo/poptop-server > > > >------------------------------------------------------- >This sf.net email is sponsored by: OSDN - Tired of that same old >cell phone? Get a new here for FREE! >https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 >_______________________________________________ >Poptop-server mailing list >Pop...@li... >https://lists.sourceforge.net/lists/listinfo/poptop-server |