Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 08 Aug 2007 16:04:47 -0600
From:      Brett Glass <brett@lariat.net>
To:        net@freebsd.org
Subject:   SSTP support?
Message-ID:  <200708082205.QAA14169@lariat.net>

next in thread | raw e-mail | index | archive | help
All:

Microsoft has apparently come out with a new VPN protocol called 
SSTP. There's no RFC for it, but it's essentially PPP over SSL, 
with the encryption coming from SSL and the authentication still 
done within PPP. It should be an improvement over PPTP, which is 
blocked by default by all of the major Windows firewalls (even 
though the security problems in it have pretty much been fixed) and 
has many incompatible or marginal implementations. PPTP is turning 
into a tech support nightmare, and we'd be eager to replace it with 
something similar that was more reliable and goof-proof.

It seems as if it would be easy to cobble together an SSTP client 
and server using code already available on FreeBSD. (It'd require a 
daemon for userland PPP and probably an SSL Netgraph node -- which, 
surprisingly, doesn't seem to exist already -- for mpd.) Is anyone 
already working on such a project?

--Brett Glass




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200708082205.QAA14169>