Home page logo

bugtraq logo Bugtraq mailing list archives

Re: Shared Secret Recovery in RADIUS
From: tqbf () ENTERACT COM (Thomas H. Ptacek)
Date: Wed, 30 Jul 1997 19:04:44 -0500

Some work seems to be done by Dale Cook <cdm () hyperk com> of SCIENTECH to
solve these issues, see

The work you're referring to involves forwarding requests between RADIUS
servers using public key encryption. It's definitely an antidote for the
problem of naieve implementations forwarding raw, insecure RADIUS protocol
messages across the Internet, but doesn't resolve the problem at the
NAS->AAAS level.

Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf () enteract com]
"If you're so special, why aren't you dead?"

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]