On October 8, 2020 10:10:57 p.m. GMT+03:00, Alan DeKok <aland@deployingradius.com> wrote:
Most of these questions are about the EAP-TLS protocol, and not FreeRADIUS. The short answer is that the protocol is described in the RFCs. You may need to read many in order to fully understand things.
Sorry then, I thought that this question was relevant here.
If you want to know "what happens when something goes wrong", or "what happens if...", then it's all answered in the RFCs.
Yep, that's what I was trying to figure out since I was worried that a malicious server could take over the connection once the client verifies the server (since as you mentioned, there are no tunnels involved). Anyway, thank you for providing the numbers of the relevant RFCs, I will make sure to give them a read.