AES encrypted passwords

Stefan Paetow Stefan.Paetow at
Sat Oct 1 13:16:38 CEST 2016

>(Maybe it's safer to use a different password for wireless access than
>for the rest of your enterprise services to mitigate the problem? But if
>you're going to do that, you could just go the EAP-TLS route anyway. And
>it doesn't obviate the need for checking the AP certificate to prevent
>traffic interception)

Some organisations already do this. Some universities are clear about
this, i.e. that your eduroam password should not be the same as your login
password to your mail etc.


Stefan Paetow
Moonshot Industry & Research Liaison Coordinator

t: +44 (0)1235 822 125
gpg: 0x3FCE5142
xmpp: stefanp at
skype: stefan.paetow.janet

Jisc is a registered charity (number 1149740) and a company limited by
guarantee which is registered in England under Company No. 5747339, VAT
No. GB 197 0632 86. JiscĀ¹s registered office is: One Castlepark, Tower
Hill, Bristol, BS2 0JA. T 0203 697 5800.


More information about the Freeradius-Users mailing list