Pap, Chap and Chap protocols

[hazelnut]

These protocols are ticked in the advanced security settings of my internet connections. Should they be? I am xp on a single broadband computer.

 

pap, spap, chap ms-chap, and ms-chap2

[Humpty]

Hi Hazelnut,

 

First time I've seen those settings and don't know much about them.

 

Had a google around and found some info.

 

Authentication Protocols

 

PAP

 

Password Authentication Protocol - Sends user name and Password in clear text

 

SPAP

 

Shiva Pass Auth Protocol - Connects to Shiva LAN Rover Server for authentication >

 

then connects to Windows Domain

 

Encrypts Password but NOT data

 

CHAP

 

Challenge Handshake Authentication Protocol

Encrypt username and Password but not Data

Used for NON-MS clients connecting to MS Servers

 

MS-CHAP

 

Microsoft CHAP

One way Password encryption for Dialup Clients (NT 98 95)

Can encrypt user credentials and Data but server must be setup for encrypting or connection will be dropped

 

MS-CHAP2 Most Secure

 

Uses Mutual Authentication and stronger encryption for W2000 and XP dialups and VPN's

 

(W98 and NT can use but only with VPN's)

 

Note - Mutual Authentication means that both the client and the server authenticate to each other >

 

prevents hackers from pretending to be the RAS Server