"Andrew Tait" <[EMAIL PROTECTED]> wrote: > Lets say that someone has the ability to sniff traffic between our NAS and > radius server. > > What are the chances of them finding out the shared secrets, or actual > usernames and passwords?
Shared secrets: NONE. They never go over the wire. Usernames: ALWAYS. They go over the wire in the clear. Passwords: ALMOST NONE. The passwords are encrypted using the shared secret, and never go over the wire in the clear. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
