On Mon, 26 Jan 2004, Manuel Kasper wrote:
> MD5 CHAP and MS CHAP v1 and v2. I think I'll turn off MSCHAPv1 in future
> releases though, because it is also considered insecure. PAP is
> plaintext and as such it's always off.
> - Manuel
Are there plans for implementing 802.1x authentication? According to
"The tunneled methods of EAP-TTLS and EAP-PEAP actually provide mutual authentication to other
methods that utilize the familiar user ID/password methods, i.e. EAP-MD5, EAP-MSCHAP V2, in order to
authenticate the client to the server. This method of authentication occurs through a secure TLS
encryption tunnel that borrows techniques from the time-tested secure Web connections (HTTPS) used
in online credit card transactions. In the case of EAP-TTLS, legacy authentication methods can be
employed through the tunnel, such as PAP, CHAP, MS CHAP and MS CHAP V2."