I have FreeRADIUS working for the captive portal authentication, however
when a user submits their username and password for validation the PF
server sends this information to the RADIUS server in clear text. This
is not a huge problem for us as our servers a literally racked one on
top of the other. However, should the servers need to communicate
across network segments or on a not-so-secure network then the usernames
and passwords of every person logging into the captive portal would be
easily stolen.
Is there a way to use EAP-TLS or some other encrypted transport? I'm
not saying make it mandatory, just to have the option.
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone: 254-295-4658
Phax: 254-295-4221
------------------------------------------------------------------------------
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store
http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
