14 Oct
2005
14 Oct
'05
1:04 a.m.
Joseph Silverman <yossie@laszlosystems.com> wrote:
I can imagine that PEAP, specifically, does the password encryption on the client and passes that on, using a similar but obviously not the same, one way encryption algorithm, thus requiring the radius server to have access to a clear text password which it would encrypt with the same key and algorithm in order to match to the one from the client.
Yes.
If this is the case, than I can readily see how it can never (never being a long time) be possible to use these sorts of passwords along with UNIX encrypted passwords. This is a darn shame, but if it is indeed the case, so be it.
Yes. Alan DeKok.