In the docs, it states the mod_radius_auth does not support digest
authentication.
Is this by virtue of it being impossible-in-principle, or merely
as-yet-not-implemented?
Thanks, josh.
--
---
Josh Howlett, Networking Digital
Josh Howlett [EMAIL PROTECTED] wrote:
In the docs, it states the mod_radius_auth does not support digest
authentication.
Is this by virtue of it being impossible-in-principle, or merely
as-yet-not-implemented?
When the module was written, there was no standard for doing digest
Josh Howlett [EMAIL PROTECTED] wrote:
To clarify, I want users to authenticate via HTTP via mod_auth_radius
against a remote RADIUS server without the intermediate WWW server (or,
for that matter, anything else) gaining knowledge of the user's
password.
Assuming mod_auth_radius implemented
On Tue, 2003-03-04 at 12:00, Alan DeKok wrote:
Josh Howlett [EMAIL PROTECTED] wrote:
To clarify, I want users to authenticate via HTTP via mod_auth_radius
against a remote RADIUS server without the intermediate WWW server (or,
for that matter, anything else) gaining knowledge of the user's
Josh Howlett [EMAIL PROTECTED] wrote:
Assume that there was a mechanism to send the cookie generated by
mod_auth_radius to the remote RADIUS server where it could be stored
(for the lifetime of the cookie).
That would probably not be a good idea, mostly due to increased
load on the RADIUS
On Tue, 2003-03-04 at 13:47, Alan DeKok wrote:
In this hypothetical case, would it be feasible for a user to present
the same cookie to a different WWW server, which could then attempt to
authenticate the user by passing the cookie to the remote RADIUS
server? (ie. thereby avoiding the
04-Mar-03 at 19:01, Josh Howlett ([EMAIL PROTECTED]) wrote :
On Tue, 2003-03-04 at 13:47, Alan DeKok wrote:
In this hypothetical case, would it be feasible for a user to present
the same cookie to a different WWW server, which could then attempt to
authenticate the user by passing the