Silly question - secure Radius?

Alan DeKok aland at ox.org
Thu Jul 7 19:36:09 CEST 2005


"Shawn Kennedy" <shawnlkennedy at lucent.com> wrote:
> I am just getting started with setting up 
> Radius, and  with the reading I've done (mostly 
> with the O'Reilly book), it seems that Radius 
> in itself is insecure. Sure, you can use a 
> Shared Secret and the password is sent with a 
> MD5 hash, but is there anything better?

  "radsec", which Radiator just came out with.

  I've taken a quick look at it, but I don't think it will be easy to
implement inside of the current server.  Adding it via an external
program should be relatively trivial, though.

  Alan DeKok.



More information about the Freeradius-Users mailing list