Hi,
I found a new man-in-the-middle attack with SSL.
http://www.sslshopper.com/article-ssl-and-tls-renegotiation-vulnerability-discovered.html
I am afraid if freeRADIUS use SSL renegotiation? The freeRADIUS version is
1.1.6. We use EAP-TLS and the backend OpenLDAP server with TLS connection
John wrote:
I found a new man-in-the-middle attack with SSL.
http://www.sslshopper.com/article-ssl-and-tls-renegotiation-vulnerability-discovered.html
It's a nice attack on SSL.
I am afraid if freeRADIUS use SSL renegotiation? The freeRADIUS version
is 1.1.6. We use EAP-TLS
2 matches
Mail list logo