Re: [Openvpn-devel] Radius support, was: Re: [Openvpn-users] Is it possible to assign a specific ip address to a certificate?
On Saturday 29 May 2004 01:34, James Yonan wrote: > Jaye Mathisen said: > > It would be nice if openvpn could be configure to work with radius for > > routing and > > > IP assignment after the certificate was done. Would allow openvpn to be > > integrated easily > > > with existing infrastructure, instead of having to have a whole new > > system > > to maintain > > > information about it. > > There have been several requests for radius support, and while it's > something I'd like to see done, I'm not going to have time to do it for > 2.0. > > This is the sort of thing where it would be ideal if someone else takes the > lead -- I would certainly be happy to technically support anyone who wants > to take the project on. 802.11x can be trivially attacked. Read the RFC. I don't see why shall I use broken protocol. -- vda
Re: [Openvpn-devel] Radius support, was: Re: [Openvpn-users] Is it possible to assign a specific ip address to a certificate?
Denis Vlasenko said: > On Saturday 29 May 2004 01:34, James Yonan wrote: > > Jaye Mathisen said: > > > It would be nice if openvpn could be configure to work with radius for > > > > routing and > > > > > IP assignment after the certificate was done. Would allow openvpn to be > > > > integrated easily > > > > > with existing infrastructure, instead of having to have a whole new > > > system > > > > to maintain > > > > > information about it. > > > > There have been several requests for radius support, and while it's > > something I'd like to see done, I'm not going to have time to do it for > > 2.0. > > > > This is the sort of thing where it would be ideal if someone else takes the > > lead -- I would certainly be happy to technically support anyone who wants > > to take the project on. > > 802.11x can be trivially attacked. Read the RFC. I don't see why > shall I use broken protocol. True, however the suggestion was to use radius only for IP address assignment and routing, not for authentication. James
