On 11/10/10 23:03, Bill Thompson wrote:
The big question is why compile radius from source? If you use the
Debian package for Freeradius, this is mostly done for you.
Because for licencing reasons the packaged version does not have SSL
support, thereby ruling out EAP-TLS and other certificate-secured
authentication methods.
Radius is typically used for securing wireless or VPN connections, and
the normal security measures for these technologies is good. Pretty much
the only reason for going to Radius is to use certificates, and then
probably only for wireless as VPN systems usually have certificate-using
modes, though they may not be as convenient for central administration
as Radius.
--
Joe
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
Archive: http://lists.debian.org/[email protected]
