the PPTP protocol is close to a cleartext implementation in that it is easy to decode captured information . MS improved on PPTP by starting to offer L2TP which allows for higher level encryptions like IPSEC to traverse the VPN. so its not about actually breaking in, its about people listening to the tunnel as it crosses the internet. for most usage, PPTP is a good enough implementation. If the Info needs to be secure then go for higher level VPN.-Sean Cavanaugh
From: [EMAIL PROTECTED]: [EMAIL PROTECTED]: Thu, 8 Feb 2007 21:40:28 +0000Subject: [pfSense Support] Is PPTP that insecure? I have set up PPTP on my pfsense box and have googled around trying to find out just exactly how insecure it is. I have read stuff to the effect that the earlier MS implementations were really poor, but it was improved. I have also read that if you are running it on your firewall as opposed to your Windows server, that is a good thing too. So what's the score according to the PFsense community of users? I'm not running a bank here or have military secrets, but it would be pain if someone broke in to do damage or to steal some of the data off of my home servers. Can anyone give some level headed advice? Thanks. Donovan _________________________________________________________________ Live Search: Better results, fast http://get.live.com/search/overview