Document Actions
Publication on SANS Institute FAQ - Microsoft PPTP Vulnerabilities by Hawke Robinson
In recent dialogue with someone, I thought to see what the comments and feedback have been on my document on Microsoft's implementation of PPTP was as published by the SANS Institute. I have copied the various comments here. What is most notable is some are as recent as 2007, and most were using my document as the a reference source on the topic.
SANS Institute Logo
I wrote my practicum document on this topic as a key part of my SANS GIAC GCIH information security certification requirements. I setup a lab of my own ranging from 12 to 20 computers and spending upwards of six months in intensive (albeit on and off) research.
My hope was to put together the de facto single document on the topic since it was scattered everywhere else (mostly in hacker circles) and not in any one comprehensive document or location.
That was back in 2002. Now, over 5 years later, I'm curious to see if that goal was achieved. I think the SANS Institue publishing it in their FAQs was a strong indicator, but what good is that if no one actually references/uses it?
So, doing a quick search for sites actually linking to the document, I found much to my pleasant surprise today, that it is being referenced by many different groups and in multiple languages around the globe. Ironically, even Microsoft Technet (Italy) references it as well.
Below, I spent about 15 minutes quickly searching and copying here, references. There were others, but these were the ones that seemed a nice variety sample.
The nicest comment was the posting in Antionline of "if you want an excellent read on VPNs, I suggest this". Glad to be of service.
Cheers!
-Hawke
Antionline April 2005:
Anyway, based on your choice, I will provide the technical detail but if you want an excellent read on VPNs, I suggest this: http://www.sans.org/resources/malwarefaq/pptp-vpn.php
http://www.antionline.com/archive/index.php/t-264935.html
Inside Pro.com (Russian) "Attack on VPN"
He lists my document as "What To Read - detailed and intelligible faq on breaking VPN (in the English)" (unknown date, I viewed it on March 15th, 2008):
http://www.insidepro.com/kk/100/100r.shtml
Babelfish rough translation version here.
My hope was to put together the de facto single document on the topic since it was scattered everywhere else (mostly in hacker circles) and not in any one comprehensive document or location.
That was back in 2002. Now, over 5 years later, I'm curious to see if that goal was achieved. I think the SANS Institue publishing it in their FAQs was a strong indicator, but what good is that if no one actually references/uses it?
So, doing a quick search for sites actually linking to the document, I found much to my pleasant surprise today, that it is being referenced by many different groups and in multiple languages around the globe. Ironically, even Microsoft Technet (Italy) references it as well.
Below, I spent about 15 minutes quickly searching and copying here, references. There were others, but these were the ones that seemed a nice variety sample.
The nicest comment was the posting in Antionline of "if you want an excellent read on VPNs, I suggest this". Glad to be of service.
Cheers!
-Hawke
Microsoft Technet (Italy) reference to my doc.
Babelfish rough translation version here.
"Here is a really good article on PPTP and security.
"
Some VPN information
http://www.sans.org/resources/malwarefaq/pptp-vpn.php
PDA Phone Home.com Reference to my doc.
NeoHapsis December 2006:
Old but still useful overview:
http://www.sans.org/resources/malwarefaq/pptp-vpn
Antionline April 2005:
Anyway, based on your choice, I will provide the technical detail but if you want an excellent read on VPNs, I suggest this: http://www.sans.org/resources/malwarefaq/pptp-vpn.php
http://www.antionline.com/archive/index.php/t-264935.html
Inside Pro.com (Russian) "Attack on VPN"
He lists my document as "What To Read - detailed and intelligible faq on breaking VPN (in the English)" (unknown date, I viewed it on March 15th, 2008):
http://www.insidepro.com/kk/100/100r.shtml
Babelfish rough translation version here.
Forgot your password?
New user?
The Cuckoo's Egg