Koozali.org: home of the SME Server

PPTP and Iphones

Offline TerryF

  • grumpy old man
  • *
  • 1,821
  • +6/-0
Re: PPTP and Iphones
« Reply #45 on: August 14, 2017, 03:19:59 PM »
Preshared key was kept to 9 to accommodate possible issues with some android versions borking at 10 or more, as HF said hopefully next release will allow anything you want :-)
--
qui scribit bis legit

guest22

Re: PPTP and Iphones
« Reply #46 on: August 14, 2017, 03:25:34 PM »
Don't forget, the radius authentication of PPTP on SME Server was designed for authentication of PPTPD clients only where users can authenticate against their normal password and the request is submitted to Radius. The trust relation between PPTPD and Radius has always been that, a trust relation, based on a 31 long password. No human can remember that, and again it was never designed to remembered by humans. Hence the NFR in bugzilla, for a 31 character password is unworkable when humans are involved. 

Offline ReetP

  • *
  • 3,722
  • +5/-0
Re: PPTP and Iphones
« Reply #47 on: August 14, 2017, 05:51:52 PM »
I believe the trend is towards longer more memorable passwords than shorter more complex ones. There is plenty of stuff online to suggest this is a better and more secure way with passwords.

Although a very simple example and should not be used, it actually isn't hard to remember 32 chars.

#1The2Hills3Are4Alive5With6Music#

Anyways, I was just curious !

I'll get back to Ipsec/L2TPD and OpenVPN which are very easy to set up and use :-)

And even stronger with RSA keys and certificates etc.
...
1. Read the Manual
2. Read the Wiki
3. Don't ask for support on Unsupported versions of software
4. I have a job, wife, and kids and do this in my spare time. If you want something fixed, please help.

Bugs are easier than you think: http://wiki.contribs.org/Bugzilla_Help

If you love SME and don't want to lose it, join in: http://wiki.contribs.org/Koozali_Foundation

Offline TerryF

  • grumpy old man
  • *
  • 1,821
  • +6/-0
Re: PPTP and Iphones
« Reply #48 on: August 15, 2017, 03:17:26 AM »
As with many things, read enough and you usually find the solution/answer or explanation that helps to clear some of the fog..at bottom of page - IP Address Assignment for L2TP Logged-in Users

https://www.softether.org/4-docs/2-howto/9.L2TPIPsec_Setup_Guide_for_SoftEther_VPN_Server/1.Setup_L2TP%2F%2F%2F%2FIPsec_VPN_Server_on_SoftEther_VPN_Server
--
qui scribit bis legit

guest22

Re: PPTP and Iphones
« Reply #49 on: August 15, 2017, 06:15:02 AM »

Offline TerryF

  • grumpy old man
  • *
  • 1,821
  • +6/-0

Offline TerryF

  • grumpy old man
  • *
  • 1,821
  • +6/-0
Re: PPTP and Iphones
« Reply #51 on: September 10, 2017, 05:54:39 PM »
So HF we have an answer, you can have a IPSec PSK length as long as you wish..might cause issues with android if its over 10, or so they say, just type in one as long as you want and then see forum post below, and attached image

http://www.vpnusers.com/viewtopic.php?f=7&t=8405

See attached image for English lang dialog box, logic says you would select Yes, But its No that is needed :-) this saves it.
--
qui scribit bis legit