On Thu, Nov 21, 2002 at 09:03:18AM +0000, Karl Pielorz wrote: > I've got tcpdump's here - I'm not sure (because of the way the secrets > work) that you can do anything with them, other than tell whether or not > the packet was signed with the one you have
Which, luck has it, is enough to debug this problem. Well, debug is going too far, let's say "direct blame". If you can email a packet dump for one or two radius packets which fail to verify, I'm sure someone will find it interesting enough to do the work, perhaps even myself. :-) You should include freeradius-devel, I'm sure there's folks there that are not also on freeradius-users. /fc - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
