Right. Its better to give crackers less information versus more. so others do not get login credentials. Though, if certificates were properly implemented, there would be mutual authentication
On Tue, Apr 7, 2009 at 8:12 AM, Arran Cudbard-Bell <a.cudbard-b...@sussex.ac.uk> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Paul Bartell wrote: >> I too have had weird behavior on macs. I just ended up using >> mac-address authentication (due to insecurities in EAP. (or >> possibly rumored, i havn't seen a paper on it yet)) > Wait what... You went to Mac-Based authentication because you thought > EAP was insecure ? > > Ohh are you referring to the scaremongering 'The Register' was doing > last year? Because of course, anyone with a hacked copy of FreeRADIUS > can steal all your users credentials ! > >> >> On Tue, Apr 7, 2009 at 7:08 AM, <a.l.m.bu...@lboro.ac.uk> wrote: >>> Hi, >>> >>>> Have you actually traced the wireless traffic (passively), are >>>> you sure it's the Macs at fault with this one? >>> as everything works fine on the same Mac when it runs Vista (yes, >>> I know...) and works all okay on random PCs and >>> PDAs/smartphones..the big greasy pointy finger is pointing >>> decidedly at the OSX >>> >>> alan - List info/subscribe/unsubscribe? See >>> http://www.freeradius.org/list/users.html >>> >> >> >> > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (Darwin) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEARECAAYFAknbbVAACgkQcaklux5oVKI4EwCgkRjarq9VkbO5HS3BNGugSU6D > 1vUAniLDBrvpkluK/EpMpreAb5w/vPvL > =87NT > -----END PGP SIGNATURE----- > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > -- Random quote of the week/month/whenever i get to updating it: "Opportunity knocked. My doorman threw him out." - Adrienne Gusoff "At school you don't get parole, good behavior only brings a longer sentence." - The History Boys - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
