Print a nice large warning on the PPTP page about it no longer being considered secure.

author: jim-p <jimp@pfsense.org> 2012-09-12 12:18:00 -0400
committer: jim-p <jimp@pfsense.org> 2012-09-12 12:18:42 -0400
commit: 0066932f89646cd5d50be80992dc52626be282c6 (patch)
tree: 1e6b0cfb4cc6118f3be3df671737e9627bda671e /usr
parent: 1a6f52660b36e9cf2b570d8bbb4a62e1f6df0970 (diff)
download: pfsense-0066932f89646cd5d50be80992dc52626be282c6.zip
pfsense-0066932f89646cd5d50be80992dc52626be282c6.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/usr/local/www/vpn_pptp.php b/usr/local/www/vpn_pptp.php
index 81395ed..7b74040 100755
--- a/usr/local/www/vpn_pptp.php
+++ b/usr/local/www/vpn_pptp.php
@@ -294,6 +294,7 @@ function enable_change(enable_over) {
 <form action="vpn_pptp.php" method="post" name="iform" id="iform">
 <?php if ($input_errors) print_input_errors($input_errors); ?>
 <?php if ($savemsg) print_info_box($savemsg); ?>
+<?php print_info_box(gettext("PPTP is no longer considered a secure VPN technology because it relies upon MS-CHAPv2 which has been compromised. If you continue to use PPTP be aware that intercepted traffic can be decrypted by a third party, so it should be considered unencrypted. We advise migrating to another VPN type such as OpenVPN or IPsec.<br/><br/><a href=\"https://www.cloudcracker.com/blog/2012/07/29/cracking-ms-chap-v2/\">Read More</a>")); ?>
 <table width="100%" border="0" cellpadding="0" cellspacing="0">
   <tr><td class="tabnavtbl">
 <?php
author	jim-p <jimp@pfsense.org>	2012-09-12 12:18:00 -0400
committer	jim-p <jimp@pfsense.org>	2012-09-12 12:18:42 -0400
commit	0066932f89646cd5d50be80992dc52626be282c6 (patch)
tree	1e6b0cfb4cc6118f3be3df671737e9627bda671e /usr
parent	1a6f52660b36e9cf2b570d8bbb4a62e1f6df0970 (diff)
download	pfsense-0066932f89646cd5d50be80992dc52626be282c6.zip pfsense-0066932f89646cd5d50be80992dc52626be282c6.tar.gz