MAC+EAP authentication

Artur Hecker artur.hecker at gmail.com
Tue Jun 14 18:21:52 CEST 2005


Alan,

well, unfortunately not really. and most importantly: it does not
assure the users use the known SOFTware to access the net.

imho, hardware has never ever represented a problem so far.


ciao
artur


On 6/14/05, Alan DeKok <aland at ox.org> wrote:
> Artur Hecker <artur.hecker at gmail.com> wrote:
> > implementing EAP or MAC authentication, meaning that one of both would
> > work, is a huge security hole and requiring both is useless since EAP
> > authentication implicitly filters away everything unauthenticated...
> 
>   Doing *both* ensures that known users only use known hardware to
> access the net.  Sort of.
> 
>   Alan DeKok.
> 
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>




More information about the Freeradius-Users mailing list