DavidXanatos
September 30th, 2008, 12:19 PM
Hi,
I have a question about PPTP vs. L2TP-IPSEC VPN encryption, I know that L2TP is supposed to be better but how much better than PPTP, and is it so also when a "Preshared Key" is used instead of a Certificate?
How critical is the Entropy of the "Preshared Key" for the security of the L2TP-IPSEC tunnel?
Is it only needed to authenticate the server/client to prevent man in the middle attacks, or is it also related to the tunnel encryption itself so that an eavesdropper that knows the key (or can brute force it cause its to short) can decrypt the VPN traffic?
I guess its only for authentication, but its better to ask....
I have a question about PPTP vs. L2TP-IPSEC VPN encryption, I know that L2TP is supposed to be better but how much better than PPTP, and is it so also when a "Preshared Key" is used instead of a Certificate?
How critical is the Entropy of the "Preshared Key" for the security of the L2TP-IPSEC tunnel?
Is it only needed to authenticate the server/client to prevent man in the middle attacks, or is it also related to the tunnel encryption itself so that an eavesdropper that knows the key (or can brute force it cause its to short) can decrypt the VPN traffic?
I guess its only for authentication, but its better to ask....