[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

re: adding RADIUS to pam

Just to get technical here for a second.  Crypt() is one way, radius is
shared secret two-way.  They are not the same thing.  Though radius is
coded so that no data except auth data is really encrypted.  Is this
legal?  I'm not a lawyer, but I would say it's allowed.


There's a radius server and a test client for download, I would assume in
the US since it's been there awhile...  1995 

-Matt Drown     -- Privacy, Anonyminity, & Security -- DataHaven Project
 panzer@dhp.com -- Shell and Web accounts           -- http://www.dhp.com/ 

On Wed, 12 Aug 1998, Alan DeKok wrote:

> >   In addition, all free unix distributions include ways to encrypt
> > user passwords.  '/etc/passwd', 'crypt', etc. have been used for
> > authenticating users, and been exported for years.  I hope that
> > encrypting a password for RADIUS authentication is any different.
>                                                      ^^^
>   read 'no' different.
>   Alan DeKok.
> -- 
> To unsubscribe: mail -s unsubscribe pam-list-request@redhat.com < /dev/null

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []