On 5 April 2012 18:06, Marsh Ray <ma...@extendedsubset.com> wrote: > On 04/05/2012 04:12 AM, Ralf-Philipp Weinmann wrote: > >> >> Do you have statistics on that? I remember newer Microsoft and Apple >> operating systems supporting L2Sec quite well. And then there are the >> Cisco abominanations of IPSec that are quite common. But maybe not as >> common as SSL VPNs. And let's not forget OpenVPN for the geek >> faction. Where did you get the data that PPTP still is "one of the >> most commonly-used VPN protocols". >> > > Honestly, it's been years since I messed with VPNs and I have not done > methodical research. I suspect VPN industry studies are likely to to be > skewed by selection bias (IT departments who are likely to spend spend > money on a real VPN). >
There's two reasons I haven't commented on this (despite it being good work): i. I'm not familiar enough with PPTP, and always avoided it like the plague anyway (and that was 10 years ago). Does dial-up not still generally use MS-CHAPv2? ii. There's only been once I've seen a company use PPTP for a VPN, and I responded as any self-respecting sys-admin would... I laughed, took the piss a bit, then fixed it. Anything else I've seen has been Cisco (IPSec or SSL afaik), Checkpoint (IPSec?), more bog-standard IPSec setups and OpenVPN. For that matter, I've seen companies use the sshd socks proxy as a "VPN".
_______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography