Norman Zhang wrote: > Good point. I guess the security risk is to do with granting others +r > access to /etc/shadow. Maybe I can > > chgrp /etc/shadow shadow > > and changing radius.conf to > > user = radius > group = shadow > > would do the trick. Which is recommended in the comments in radiusd.conf. Alan DeKok.