I agree that promiscuous authentication is not how FreeRadius was supposed to work. Sorry for not reading the documentation first. I thought that communication between Radius clients and servers is secure by design. Is this not always true?
Ilguiz On Mon, 15 Jul 2002, Alan DeKok wrote: > > Is this a good idea to allow testing of a given user name/password pair > > from anywhere in internet? > > I would say no. I'm not sure why it would be necessary, and it's a > bad idea to expose a RADIUS server to anyone's traffic. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html