nanog mailing list archives

Re: Internet access and telco usage patterns

From: Barney Wolff <barney () databus com>
Date: Mon, 8 Jul 1996 19:17 EDT

Date: Mon, 8 Jul 1996 13:30:28 -0700 (PDT)
From: Michael Dillon <michael () memra com>

On Mon, 8 Jul 1996, Barry James wrote:

So, the only "secrets" that are shared are the md5 digest keys used 
between the RADIUS server and TS.


Not quite. The user must "share" their password with the first RADIUS
client in order for it to be encrypted via MD5 in the first place. There
is a hole here. But there is a solution as well.


Not true with CHAP.  Nothing knows the user's secret but the user
and the eventual auth server.

Barney Wolff  <barney () databus com>
- - - - - - - - - - - - - - - - -

Current thread:

Re: Internet access and telco usage patterns, (continued)
- Re: Internet access and telco usage patterns Stan Barber (Jul 01)
- Re: Internet access and telco usage patterns Bill Woodcock (Jul 01)
- Re: Internet access and telco usage patterns Michael Dillon (Jul 01)
- RE: Internet access and telco usage patterns Hank Nussbacher (Jul 01)
- Re: Internet access and telco usage patterns Rob Gutierrez (Jul 02)
- Re: Internet access and telco usage patterns Eric Woodward (Jul 04)
- Re: Internet access and telco usage patterns Hong Chen (Jul 05)
- Re: Internet access and telco usage patterns Eric Woodward (Jul 06)
  - Re: Internet access and telco usage patterns Barry James (Jul 08)
    - Re: Internet access and telco usage patterns Michael Dillon (Jul 08)
- Re: Internet access and telco usage patterns Barney Wolff (Jul 08)
- Re: Internet access and telco usage patterns Hong Chen (Jul 09)