13 Mar
2009
13 Mar
'09
9:40 a.m.
leopold wrote:
A year passed. Did you change your roadmap?
Roadmaps always change.
Do you have plans to implement this feature and make rlm_eap RLM_TYPE_HUP_SAFE?
There are no plans to do this right now.
I understand this is not an easy fix since it should handle ongoing EAP-TLS conversations
It would likely be better to add OCSP support. i.e. Make the server use OpenSSL's existing OCSP functionality. That adds dynamic certificate revocation, without requiring the EAP module to understand HUP. Alan DeKok.