EAP/MSCHAPv2 code question
Dear developers, I was looking at the MSCHAPv2 code patched since version 1.1.0 of freeradius due to the "FreeRADIUS EAP-MSCHAPv2 Authentication Bypass Vulnerability" issue (CVE 2006/1354) in modules/rlm_eap/types/rlm_eap_mschapv2/rlm_eap_mschapv2.c (~l 450) The changes concern the case where the server receives a success. I actually cant figure how it can happen, because rfcs are always stating the server to send such messages to the clients. Could someone let me know about it? Thanks in advance, -- Julien
Julien.HOCHART@fr.thalesgroup.com wrote:
The changes concern the case where the server receives a success. I actually cant figure how it can happen, because rfcs are always stating the server to send such messages to the clients.
What if someone doesn't follow the RFC's? You can't trust attackers to do what they're supposed to do. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
participants (2)
-
Alan DeKok -
Julien.HOCHART@fr.thalesgroup.com