CHAP MD5

[Michal Bohata]

No prave jsem na to koukal jako trubka :-) kdyz jsem jeden den fungoval na
NT4 RAS vcetne callbacku a po jednom "malem" upgrade se muj milovany linux
uz nehodla do toho divneho systemu dostat.
Kdyz se pripojim na ten RAS z WIN98 a kouknu se na detaily o spojeni a
autentifikaci hlasi to "Microsoft mutuant encryption" alespon tak nejak to
pise...pred tim tam bylo tusim challenge encryption .....grrrr nesnasim
windozy.Pro zajimavost posilam debug meho pppd demonka.Je to vysledek
upgrade na strane M$ ja jsem s tim nic nedelal a dopada to takhle.

Aug 17 23:46:27 localhost pppd[707]: pppd 2.3.11 started by root, uid 0
> Aug 17 23:46:48 localhost pppd[707]: Serial connection established.
> Aug 17 23:46:48 localhost pppd[707]: Using interface ppp0
> Aug 17 23:46:48 localhost pppd[707]: Connect: ppp0 <--> /dev/modem
> Aug 17 23:46:49 localhost pppd[707]: sent [LCP ConfReq id=0x1 <asyncmap
0x0>
> <callback CBCP> <pcomp> <accomp>]
> Aug 17 23:46:49 localhost pppd[707]: rcvd [LCP ConfReq id=0x0 <asyncmap
0x0>
> <auth chap 81> <magic 0x6c635f34> <pcomp> <accomp> <callback CBCP> < 11 04
> 06 4e> < 13 17 01 30 64 16 ae 37 5c 4b db 92 80 53 7a ab 26 41 49 00 00 00
> 00> < 17 04 00 21>]
> Aug 17 23:46:49 localhost pppd[707]: sent [LCP ConfRej id=0x0 <magic
> 0x6c635f34> <callback CBCP> < 11 04 06 4e> < 13 17 01 30 64 16 ae 37 5c 4b
> db 92 80 53 7a ab 26 41 49 00 00 00 00> < 17 04 00 21>]
> Aug 17 23:46:49 localhost pppd[707]: rcvd [LCP ConfAck id=0x1 <asyncmap
0x0>
> <callback CBCP> <pcomp> <accomp>]
> Aug 17 23:46:49 localhost pppd[707]: rcvd [LCP ConfReq id=0x1 <asyncmap
0x0>
> <auth chap 81> <pcomp> <accomp>]
> Aug 17 23:46:49 localhost pppd[707]: sent [LCP ConfNak id=0x1 <auth chap
> MD5>]
> Aug 17 23:46:50 localhost pppd[707]: rcvd [LCP ConfReq id=0x2 <asyncmap
0x0>
> <auth chap MD5> <pcomp> <accomp>]
> Aug 17 23:46:50 localhost pppd[707]: sent [LCP ConfAck id=0x2 <asyncmap
0x0>
> <auth chap MD5> <pcomp> <accomp>]
> Aug 17 23:46:50 localhost pppd[707]: cbcp_lowerup
> Aug 17 23:46:50 localhost pppd[707]: want: 14
> Aug 17 23:46:50 localhost pppd[707]: rcvd [CHAP Challenge id=0x0
> <23cba2f8d3d654fe710485e98308c001>, name = "xxx"]
> Aug 17 23:46:50 localhost pppd[707]: sent [CHAP Response id=0x0
> <1923cf5665db0980cb09914ceeada70c>, name = "xxxxx"]
> Aug 17 23:46:51 localhost pppd[707]: rcvd [CHAP Failure id=0x0 ""]
> Aug 17 23:46:51 localhost pppd[707]: CHAP authentication failed
> Aug 17 23:46:51 localhost pppd[707]: sent [LCP TermReq id=0x2 "Failed to
> authenticate ourselves to peer"]
> Aug 17 23:46:51 localhost pppd[707]: rcvd [LCP TermReq id=0x4
> "lc_4\000<\37777777715t\000\000\002\37777777663"]
> Aug 17 23:46:51 localhost pppd[707]: sent [LCP TermAck id=0x4]
> Aug 17 23:46:51 localhost pppd[707]: rcvd [LCP TermAck id=0x2 "Failed to
> authenticate ourselves to peer"]
> Aug 17 23:46:51 localhost pppd[707]: Connection terminated.
> Aug 17 23:46:52 localhost pppd[707]: Exit.


Obratil jsem se i do konfery linux.networking a dostal jsem tuhle odpoved :


Well, I've never used Win2k RAS... but I have a very good guess I think.
I'm
guessing Win2k *requires* MS encryption of passwords.

I know there is a patch for pppd-2.3.10 (not 11 AFAIK)... Check out this
link:
http://www.moretonbay.com/vpn/download_pptp.html

I know its for PPTP... but it has the patch referenced, and instructions for
including it in the kernel.

Then MS PPP connections should work like a charm.  I would give you a more
appropriate link, but I think as the page I gave you says... the original
author
of the patch has not updated it for a while. (i think for 2.3.0).  Here's
the
link nonetheless:

http://lme.terra.vein.hu/~mag/works/RAS/

I would bet that patching pppd will fix your problem.

Navedl me ten clovek dobre ?.Musim to delat vsechno nebo jenom pridat tu md5
do zdrojaku pppd a znovu zkompilovat ?.
Joj to je otazka .....

Bye
Michal