On Tue, 2003-03-04 at 11:22, Alan DeKok wrote: > Josh Howlett <[EMAIL PROTECTED]> wrote: > > In the docs, it states the mod_radius_auth does not support digest > > authentication. > > > > Is this by virtue of it being impossible-in-principle, or merely > > as-yet-not-implemented? > > When the module was written, there was no standard for doing digest > authentication over RADIUS. Last year, Cisco proposed an IETF > standard to do this for SIP. It was rejected, but FreeRADIUS supports > it. > > If you can modify mod_auth_radius to pack the digest information > into RADIUS attributes as per 'doc/rfc/draft-sterman-aaa-sip-00.txt', > then FreeRADIUS will be able to authenticate them.
To clarify, I want users to authenticate via HTTP via mod_auth_radius against a remote RADIUS server without the intermediate WWW server (or, for that matter, anything else) gaining knowledge of the user's password. Assuming mod_auth_radius implemented digest authentication, is this a workable solution? thanks, josh. -- ----------------------------------------------------------- Josh Howlett, Networking & Digital Communications, Information Systems & Computing, University of Bristol, U.K. 'phone: 0117 928 7850 email: [EMAIL PROTECTED] ------------------------------------------------------------ --- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
