Release of 3.0.2 is imminent

Alan DeKok aland at deployingradius.com
Mon Feb 17 16:32:50 CET 2014


  Please test.

  One major cosmetic change is the hiding of secret keys when using
"radiusd -X"

 ...
 client localhost {
 	ipaddr = 127.0.0.1
 	require_message_authenticator = no
 	secret = <<< secret >>>
 ...

  They still show up when using "radiusd -Xx".

  I've historically opposed this.  The reason has been that the keys are
needed for debugging, which is correct.  However, the number of people
who've screwed up and posted their secrets publicly is growing.

  In the interest of not letting people hurt themselves, the secrets are
now secret by default.

  If anyone objects, please let me know.

  Alan DeKok.


More information about the Freeradius-Devel mailing list