I'm not sure I agree. Adding little pieces of security to address
perceived flaws is almost always a waste of time.
It's better to do a *system* security analysis, and a suite of
security fixes for your entire system.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freerad
Alan DeKok escribió:
That is the easiest method.
Ok, I've had a look at your Deploying Radius site and that compatibility
table. I haven´t seen it before. I guess ntlm_auth can do it too. And we
could add a pre-calculated digest hash for those VoIP dudes. We will try
all that.
You
Alan DeKok escribió:
Fco. Javier Melero wrote:
Well, surely I'm missing something, but that's the way I've found to
store clear text passwords in LDAP keeping some peace of mind. What
could be the alternative?
Storing them as clear-text.
Encrypting them adds
Alan DeKok escribió:
Fco. Javier Melero wrote:
I've got an LDAP attribute mapped into user-password RADIUS attribute.
This attribute is RSA-ciphered
And why would you do that? It's completely useless.
Well, surely I'm missing something, but that's the way
tings
--
=====
Fco. Javier Melero de la Torre
Universidad Carlos III de Madrid
Servicio de Informática y Comunicaciones
Area de Seguridad y Comunicaciones
(https://asyc.uc3m.es)
e-mail: [EMAIL PROTECTED]
phone: (+34) 916.249.980, (+34) 918.561.341
fax:
5 matches
Mail list logo
