I'm planning on setting up a VPN connection between two computers. I would like to test how secure the connection is. Is their a program or some step i should take in checking how strong the connection is to intrusion.
One obvious thing to do would be to stck a hub in the middle and packet capture the setup of the VPN session, the login and the transfer of the first bit of data. Then check to see if, for example, any of the passwords or setup exchange is sent unencrypted
Thanks for the heads up. I was reading up on testing vpn's and i haven't came across your theory. Aprreicate! I i'll give it a try. I found a program called Gateprotect. I requries me to create a server that will run the vpn connection to my workstation pc. If you know of anyother software my ears are open.
I run VPN over my wireless LAN using openVPN(same devs as openSSL and SSH I believe) and I love it. I have done what Bishop said to do, except with dsniff and a switch, and only the udp connection exchange is unencrypted. It requires some advanced knowledge with working on virtual interfaces, but overall it's a quick setup and works wonderfully. Check it out
"He who breaks something to find out what it is, has left the path of wisdom."