Revision as of 07:34, 23 February 2008 edit Dawnseeker2000 (talk \| contribs) Autopatrolled, Extended confirmed users, File movers, New page reviewers, Pending changes reviewers, Rollbackers 535,883 edits m →External links: remove link - no need for that link or the section any longer ← Previous edit		Revision as of 07:36, 23 February 2008 edit undo Dawnseeker2000 (talk \| contribs) Autopatrolled, Extended confirmed users, File movers, New page reviewers, Pending changes reviewers, Rollbackers 535,883 edits m →Security Considerations: convert embedded link to full reference Next edit →
Line 4: == Security Considerations == LEAP uses a modified version of [[MS-CHAP]], an [[authentication]] protocol in which user credentials are not strongly protected. Stronger authentication protocols employ a [[salt (cryptography)\|salt]] to strengthen the credentials against eavesdropping during the authentication process. Cisco's response to the weaknesses of LEAP suggests that network administrators either force users to have stronger, more complicated [[passwords]] or move to another authentication protocol also developed by Cisco, [[EAP-FAST]], to ensure security.<ref>{{citeweb\|title=Cisco Security Notice: Dictionary Attack on Cisco LEAP Vulnerability\|url=http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml\|publisher=cisco.com\|accessdate=2008-02-22}}</ref> Automated tools like ~~[http://asleap.sourceforge.net/~~ ASLEAP] demonstrate the simplicity of getting unauthorized access in networks protected by LEAP implementations.<ref>{{citeweb\|title=asleap\|url= http://asleap.sourceforge.net/\|publisher=sourceforge.net\|accessdate=2008-02-22}}</ref> ==References==

Lightweight Extensible Authentication Protocol: Difference between revisions