BlastRADIUS: a CRITICAL security vulnerability
Marco Gaiarin
gaio at lilliput.linux.it
Fri Jul 12 11:27:50 UTC 2024
Mandi! Alan DeKok
In chel di` si favelave...
> https://inkbridgeneworks.com/blastradius/faq
> The attack has nothing to do with Active Directory.
I know. I'm simply listing a use case.
> See my FAQ above. There are clear descriptions for who is vulnerable, and who is not.
I've read, but seems not so clear to me, so i've asked.
> PEAP is really MS-CHAP inside of TLS, inside of EAP, inside of RADIUS.
> When you just use MS-CHAP over RADIUS, it's insecure. Don't use that. Ever.
OK. Thanks.
--
More information about the Freeradius-Users
mailing list