Mac OSX + PEAP/MSCHAPv2 + Special characters in password

Olivier Beytrison olivier at
Thu May 15 16:33:32 CEST 2014

On 14.05.2014 21:54, Olivier Beytrison wrote:
> On 14.05.2014 17:03, Phil Mayers wrote:
>> If they are making this obvious mistake, they're effectively generating
>> the MD4/NT hash from "test§" instead of "test§". Might be possible to
>> confirm this by changing the server-side password to the "wrong" one.
> It sounds like a good idea :) I'll try this to confirm the issue.
> It it's confirme, the hard part will be to report it to apple :p
> Thx !
> Olivier B.

Well no, setting the password in the backend with the incorrectly
encoded password doesn't work. the MAC is still unable to connect.

Time to escalate this to Apple.


 Olivier Beytrison
 Network & Security Engineer, HES-SO Fribourg
 Mail: olivier at

More information about the Freeradius-Users mailing list