Re: Shared Secret Recovery in RADIUS

Thomas H. Ptacek (tqbf@enteract.com)
Wed, 30 Jul 1997 19:04:44 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Adam Shostack: "Re: Shared Secret Recovery in RADIUS"
Previous message: Kragen Sitaker: "Re: request-route"
Maybe in reply to: Reilly: "Shared Secret Recovery in RADIUS"
Next in thread: Adam Shostack: "Re: Shared Secret Recovery in RADIUS"

> Some work seems to be done by Dale Cook <cdm@hyperk.com> of SCIENTECH to
> solve these issues, see

The work you're referring to involves forwarding requests between RADIUS
servers using public key encryption. It's definitely an antidote for the
problem of naieve implementations forwarding raw, insecure RADIUS protocol
messages across the Internet, but doesn't resolve the problem at the
NAS->AAAS level.

----------------
Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf@enteract.com]
----------------
"If you're so special, why aren't you dead?"

Next message: Adam Shostack: "Re: Shared Secret Recovery in RADIUS"
Previous message: Kragen Sitaker: "Re: request-route"
Maybe in reply to: Reilly: "Shared Secret Recovery in RADIUS"
Next in thread: Adam Shostack: "Re: Shared Secret Recovery in RADIUS"