On 20/12/2009 22:44, Alan Buxey wrote: > Hi, > > >> ....some would say that is a controversial MAC address regexp, but I >> guess you just do things differently 'up north' eh? :) >> > hey, it was a quick hackup example to deal with the question. > > >> 'cheese112233xxyyzzTASTY' would even match that :) >> > yep - but a user could just as easily log in with the user-name of > 00:11:22:33:44:55 ;-) > > Hmm yes, maybe add a !EAP-Message condition somewhere in there... > thats why some decent stuff needs to be done elsewhere....I dont > like Mac auth bypass. not a fan of it at all - its a horrible > kludge to deal with devices that cant do 802.1X > > the real answer is to get the vendors to sort their cheap shoddy kit out ;-) > Ahem *Vendor :P - - Sorry I have to do it or they beat me :(
-Arran
signature.asc
Description: OpenPGP digital signature
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
