SSTP - rejecting connections configured in an unexpected way
Posted: Tue Jan 14, 2014 1:01 am
Hi,
Thank you guys for this insane Project.
This will move a lot in the whole industry.
I have some questions regarding confoguration of the SE-Server.
My intention is to create an SSTP-VPN server - first at home ony my
ASUS TS Mini Home Server (Microsof Windows Home Server - discontinued product based on the Windows Server 2003 platform).
I succeeded and the connection works well.
Unfortunately it is possible to configure the client (Windows 7 build-in) not to use the encryption and not to use authentication methods better than PAP.
What do You think about few CheckBoxes on the SE-Server where we could configure the minimum requrements (PAP allowed/disallowed, etc.)?
I found also, that if I set the Windows 7 client's option "Data Encryption" to "No encryption allowed (server will disconnect if it requires encryotion)", then the SE-Server connects anyway.
On one of attached screenshots You can see a configuration of the client - will the PEAP authentication method be supptorted?
On the 2nd screenshots You will find my next question - are these two field correlated? Encryption 256 bit and Session Key 160 bit?
Thak you in advance,
petrov
Thank you guys for this insane Project.
This will move a lot in the whole industry.
I have some questions regarding confoguration of the SE-Server.
My intention is to create an SSTP-VPN server - first at home ony my
ASUS TS Mini Home Server (Microsof Windows Home Server - discontinued product based on the Windows Server 2003 platform).
I succeeded and the connection works well.
Unfortunately it is possible to configure the client (Windows 7 build-in) not to use the encryption and not to use authentication methods better than PAP.
What do You think about few CheckBoxes on the SE-Server where we could configure the minimum requrements (PAP allowed/disallowed, etc.)?
I found also, that if I set the Windows 7 client's option "Data Encryption" to "No encryption allowed (server will disconnect if it requires encryotion)", then the SE-Server connects anyway.
On one of attached screenshots You can see a configuration of the client - will the PEAP authentication method be supptorted?
On the 2nd screenshots You will find my next question - are these two field correlated? Encryption 256 bit and Session Key 160 bit?
Thak you in advance,
petrov