-
Notifications
You must be signed in to change notification settings - Fork 78
PPTP Setup
This guide goes through the simplest setup steps to create a PPTP server that you can use with Mallory. This is not the way to securely setup a PPTP service in a production environment so I wouldn't recommend making this public.
Overview:
- Install PPTPD
- Change DNS servers in PPP settings
- Add usernames to chap-secrets
- uncomment remoteip and localip from pptpd.conf
In ubuntu this is as simple as
Some mobile devices require that the DNS servers be supplied. Uncomment the ms-dns: settings and fill in with a DNS server of your choosing like 8.8.8.8 and 8.8.4.4.
The /etc/ppp/chap-secrets file contains a list of valid usernames, passwords, and IP's that are allowed to VPN in. It should be in the form of:// USERNAME SERVICE PASSWORD IP // mallory pptpd mallory! * //
The /etc/pptpd.conf file mostly references items in the /etc/ppp folder except for the import subnet settings. Look to the bottom of the code and uncomment the lines to look like this(or choose a different subnet if you're using this scheme on your network currently)://
When you're done, restart PPTPD service
- !bash
sudo /etc/init.d/pptpd restart }}}
Android includes a PPTP client, these are the settings you need:
- Put the phone on the same network as the PPTP server (connect to a wireless access point on the LAN)
- Press Menu>Settings>Wireless & networks>VPN Settings
- Press Add VPN
- Add PPTP VPN
- VPN Name: Mallory
- VPN Server: IP address of the mallory server that is hosting PPTP
- Enable Encryption: Yes(optional)
- DNS Search Domains: blank (optional)
- click the Mallory VPN you just setup and type in the username and password you set in the chap-secrets file (mallory/mallory!)
- connect
Test that connectivity is working by navigating to a website. If you look at the mallory.py console, traffic should be showing up if you enabled debugging. See the usage guide for more information.
- Run the setup VPN wizard
- type in the IP address of the mallory server that is hosting PPTP
- give the connection a name and click next
- type in the username and password you set in the chap-secrets file (mallory/mallory!) you can leave the domain blank
- click connect
Test that connectivity is working by navigating to a website. If you look at the mallory.py console, traffic should be showing up if you enabled debugging. See the usage guide for more information.
NOTE: If you're using a virtual machine like Vmware, make sure that your bridged adapter of the Mallory box is not the same as the network card used to make the PPTP connection on the Windows host.