https Radius authentication problem

Timmy moonyhk at netscape.net
Sun Sep 13 10:33:56 CEST 2015


Dear All Radius Developers,
I am doing a web Radius authentication.  I am also reading Mr. Alan
DeKok's article about its security issue.
https://github.com/FreeRADIUS/mod_auth_radius
For http connection to the website, we know that the password is not
encrypted.

Now I set up a SSL certificate for the website in question.  How do you
rate the security of this https Radius authentication?  Is the password,
being sent over the internet, also encrypted by the usual SSL layer?


Hope to receive your helpful response.


Yours Faithfully,
Timmy


More information about the Freeradius-Users mailing list