> michael wrote:
> <snip>
> > peer authentication required but no suitable secret(s) found
> > for authenticating any peer to us
> >
> > in both cases. Of course, the chap-secrets are there and valid enough to
> > get correct operation on the earlier versions.
> >
> > Clients log in on a 'ppp' login with .ppprc setting auth +chap.
> >
> quoting from the options.tpl file in the ppp-howto:
>
> #Require the peer to authenticate itself using CHAP authentication.
> #This requires TWO WAY authentication - do NOT use this for a
> standard CHAP #authenticated link to an ISP as this will require the ISP
> machine to authenticate
> #itself to your machine (and will not be able to)
> #+chap
>
> ie. that +chap option may be out of place there.
Thanks for the suggestion, Andreas. To clarify,
(1) I am using CHAP 05 (normal Unix CHAP), and from memory the 2-way
requirement is for a CHAP 80 server.
(2) In both before and after cases I used two clients, a Linux box and a
Microsoft 98 box. Both were successful in the first scenario and both
failed in the second.
(3) In both cases I offered 2-way authentication. In the case of the
Linux client the ISP authenticated itself with a different secret. In the
Microsoft 98 case the ISP was prepared to authenticate itself with the
client's secret but was not asked. It doesn't seem possible to turn on a
peer authentication requirement in Microsoft 98.
My latest guess is that it's my fault for whacking a late 2.1 kernel onto
a clean Slackware 3.5 without upgrading the C lib. Will be trying that
next.
Regards,
Mike
-
To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
the body of a message to [EMAIL PROTECTED]
