Alan,

Thanks for the reply! 

In my understanding RADIUS provides security in the form of an MD5 hash -- not ideal.

Has RADSEC been implemented for this PAM module? If not, how is the community sanitizing this traffic? IPSEC? STUNNEL?

Thanks!




On Tue, Dec 3, 2013 at 5:59 AM, Alan DeKok <aland@deployingradius.com> wrote:
Bob Probert wrote:
> I compiled and configured the PAM module, things appear to be working,
> however I would like to use a more secure authentication method than PAP.

  What do you mean "more secure" ?  The system running PAM has the
clear-text password for the user.  The RADIUS server has the clear-text
password for the user.  The RADIUS protocol secures the password when
it's sent in the network.

  What, exactly do you mean?

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html