23 Jun
2008
23 Jun
'08
6:19 a.m.
blue_11j@yahoo.co.jp wrote:
I found calling eaplist_find() in eap.c, if (eap_packet->data[0] != PW_EAP_IDENTITY) { handler = eaplist_find(inst, request, eap_packet); .... }
If radiusd continue receiving EAP-Identiry packet only (it is malicious attack, not many trying to login.), is eaplist_find() called ?
No. But this doesn't matter, because EAP-Identity requests aren't put into the list. Again, this is in the source code. Alan DeKok.