Date: Fri, 9 Nov 2001 13:54:06 -0800 From: Brooks Davis <brooks@one-eyed-alien.net> To: Andre Oppermann <oppermann@pipeline.ch> Cc: Pekka Nikander <pekka.nikander@nomadiclab.com>, freebsd-net <freebsd-net@FreeBSD.ORG>, Marco Molteni <molter@tin.it> Subject: Re: A minimal IEEE 802.1x aka EAPOL implementation available Message-ID: <20011109135406.A30773@Odin.AC.HMC.Edu> In-Reply-To: <3BEC4D4C.EDFC47D0@pipeline.ch>; from oppermann@pipeline.ch on Fri, Nov 09, 2001 at 10:40:28PM %2B0100 References: <3BEC4D4C.EDFC47D0@pipeline.ch>
next in thread | previous in thread | raw e-mail | index | archive | help
--d6Gm4EdcadzBjdND Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Nov 09, 2001 at 10:40:28PM +0100, Andre Oppermann wrote: > It could also better interact with other userland services like login > or PAM. Think with logging in, it will authenticate you to the > (physical) network and the (ethernet) switch will put you into the > right VLAN for example. Or it could prompt for secure-id. This one is pretty critical. If you can't support SecurID passwords (60sec lifetime) then there are lots of sites that won't be able to work with the system at all. We've already seen this problem with the Cisco LEAP stuff. -- Brooks --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --d6Gm4EdcadzBjdND Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE77FB9XY6L6fI4GtQRAoPOAKCqQNbdMbr1kgdQobuA0DRRYJg3VwCeM6bb oa4VJJTfSASlxs279DsCDbw= =JtyV -----END PGP SIGNATURE----- --d6Gm4EdcadzBjdND-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011109135406.A30773>