Receiving a CHAP Challenge:
When the Portmaster receives a CHAP challenge, it acquires the secret
token from <here> and generates a response message by running MD5 on
this secret token and the value on the challenge message. It then sends
this response message to the challenger.
Sending a CHAP Challenge
When the Portmaster sends a CHAP challenge, it includes <this name>
in the name field, and a randomly generated number as the value field.
After receiving the response, the Portmaster acquires the secret token
from <here> based on the name in the response message. If running MD5
on the the secret token and the randomly generated number produce the
same value as in the response value, the portmaster sends an ACK,
otherwise it sends a NAK.
I've made certain assumptions on how CHAP works in the above
descriptions. If these are wrong, please let me know. The biggest
assumption is that all MD5 encryptions are done on the Portmaster.
Thanks for any help in this,
-- Steven Freed Magic Software Development, Inc.