hi Alan
i don't know if you are really interested in it, but PEAP [2] ("protected EAP") is another MS-Cisco invention (built in in Windows XP SP1 instead of EAP/MD5 as kind of alternative for EAP/TLS). Nobody seems to know so far how it works but you bet there will be more questions on it (since it's in win xp....[1]). it probably gives mutual out and key negotiation, i didn't take a deeper look though. ciao artur [1] i wonder if i gonna have more respect if i change my surname to "xp"... :-) [2] http://www.globecom.net/ietf/draft/draft-josefsson-pppext-eap-tls-eap-02.html Alan wrote: > PEAP? What's that? > If you supply PEAP patches, it'll probably go in. If you don't > supply paches, then probably not. -- Artur Hecker artur[at]hecker.info - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html