Norman Zhang wrote: > Good point. I guess the security risk is to do with granting others +r > access to /etc/shadow. Maybe I can > > chgrp /etc/shadow shadow > > and changing radius.conf to > > user = radius > group = shadow > > would do the trick.
Which is recommended in the comments in radiusd.conf. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
