Secure auth methods pam_radius
Bob Probert
bruisebrotherprobert at gmail.com
Tue Dec 3 17:40:52 CET 2013
Alan,
Thanks for the reply!
In my understanding RADIUS provides security in the form of an MD5 hash --
not ideal.
Has RADSEC been implemented for this PAM module? If not, how is the
community sanitizing this traffic? IPSEC? STUNNEL?
Thanks!
On Tue, Dec 3, 2013 at 5:59 AM, Alan DeKok <aland at deployingradius.com>wrote:
> Bob Probert wrote:
> > I compiled and configured the PAM module, things appear to be working,
> > however I would like to use a more secure authentication method than PAP.
>
> What do you mean "more secure" ? The system running PAM has the
> clear-text password for the user. The RADIUS server has the clear-text
> password for the user. The RADIUS protocol secures the password when
> it's sent in the network.
>
> What, exactly do you mean?
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20131203/eb5026f7/attachment.html>
More information about the Freeradius-Users
mailing list