> From: [email protected] [mailto:[email protected]] > On Behalf Of Brian Gold > > I would > HIGHLY recommend setting up radius authentication if you have > a centralized ldap system (Active Directory, OpenLDAP, etc).
I believe radius only handles password authentication. If you have a cert infrastructure, it's best to use cert first and username/password only as a second factor. Even if you have a 9-char long password full of complex mix caps and symbols, a brute force attack can crack that in days. If you want security, you really need to go for certs. A lot of people don't really care about security though. ;-) _______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
