Date: Wed, 11 Sep 1996 17:30:47 +1000 (EST) From: Richard J Uren <richard@thehub.com.au> To: Matt Hamilton <matt@boris.clintondale.com> Cc: Peter Childs <pjchilds@imforei.apana.org.au>, freebsd-isp@freebsd.org Subject: Re: Recommendations on password management. Message-ID: <Pine.BSF.3.91.960911171943.17461H-100000@smople.thehub.com.au> In-Reply-To: <Pine.BSF.3.95.960911001808.161B-100000@boris.clintondale.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 11 Sep 1996, Matt Hamilton wrote: > > The section in the handbook on kerbos looks interesting. I don't know > > how it would work across a distributed system, but it might be worth > > looking into a bit closer. > > I know of a sysop that is trying to hack radius authentication into the > logon for his machines. So when a user enters their usename and password > it is encrypted and sent to a central radius server (that also controls > the Portmasters and Ascends) for verification. This seems like a pretty > good solution as it is secure and easily scalable and it fits in easily > with his existing setup (as he already has a radius server for it to > connect to). To make the job EVEN easier his user accounting package > (UTA) has or is (I'm not sure this was a while ago) come out with a radius > add on for their package. This means that the users info is entered once > when the user subscribes and that's it! > This sounds promising. We use radius here so that would make me extra happy. Ide be willing to contribute to the effort by porting usefull programs as well (popper, ftp etc ...). Is he using FreeBSD ? And which radius server ? Cheers Richard
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.960911171943.17461H-100000>