Results 1 to 5 of 5

Thread: Anyway to sniff PPP authentication?

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Jan 2010
    Location
    Big Sky Country
    Posts
    17

    Default Anyway to sniff PPP authentication?

    Our instructor brought up a question in class, asking whether it is possible to sniff PPP authentication? My answer would be no, as it is only a point-to-point protocol. But that brings up the idea of PPPoE and whether a capture program could "peel" the frames off enough to get to the encrypted username and password?

    Anyone have any thoughts?

  2. #2
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: Anyway to sniff PPP authentication?

    OK, just so I dont accidentally answer a homework question Im going to provide vague hints instead of direct answers. So, you need to look deeper. Have a read of this.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  3. #3
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default Re: Anyway to sniff PPP authentication?

    Quote Originally Posted by A Student View Post
    Our instructor brought up a question in class, asking whether it is possible to sniff PPP authentication? My answer would be no, as it is only a point-to-point protocol. But that brings up the idea of PPPoE and whether a capture program could "peel" the frames off enough to get to the encrypted username and password?

    Anyone have any thoughts?
    I seem to recall it being a no, though that may have something to do with how RADIUS works in dial-up situations and such.

    PPP as a standard supports CHAP and PAP, so if you can decode those (or MiTM them) then I would say it's possible. I'm not familiar with any tools though, some others may be, and a quick google didn't reveal any while I was thinking about it.

    Edit: Or what lupin said
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

  4. #4
    Just burned his ISO
    Join Date
    Jan 2010
    Location
    Big Sky Country
    Posts
    17

    Default Re: Anyway to sniff PPP authentication?

    No this is not homework we are doing layer 2 security in lab. And thanks for the read, but I am aware of the differences of PAP and CHAP, gotta love teh BCMSN book. I set up a CHAP DCE/DTE connection between two of my 2610 routers, and I couldn't think of a way to sniff what was happening between the two. Then he mentioned something about PPPoE, and got me thinking that it might be possible. If you could somehow sniff the link between the routers.


    Thanks

  5. #5
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: Anyway to sniff PPP authentication?

    Quote Originally Posted by A Student View Post
    I am aware of the differences of PAP and CHAP, gotta love teh BCMSN book
    A proper understanding of PAP and CHAP (the authentication protocols used in PPP) should tell you whether it is possible to sniff PPP authentication. Don't think about specific technical means of reading the packets sent over PPP links, because that is always possible given physical access to the media itself and the right tools (the specific method will be media dependent given that PPP links can be established over various types of media). If the software solution you are using to establish the link doesn't support sniffing, you can always physically tap the line.

    Instead, think about how the data is transferred over the wire. Is it encrypted or not?

    Edit: And if encrypted, can it be easily decrypted (or even replayed if you want to consider other attacks)?
    Last edited by lupin; 02-11-2010 at 05:45 AM.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •