Re: Radius Auth and Insecurity Outputs

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Ted Unangst

Subject: Re: Radius Auth and Insecurity Outputs

Date: Tuesday, April 20, 2010 - 6:39 am

On Tue, Apr 20, 2010 at 7:04 AM, Alexander Hall <halex@openbsd.org> wrote:
quoted text>> Set the encrypted password to *************
>>
>
> Thank you Stuart for not recommending hacking away on /etc/security but
> instad provide the "correct" answer. :-)
>
> And while the awk-literate audience might have noticed that any
> 13-character string would suffice, I'd say "*************" is indeed the
> most prevalent form thereof.

Blech.  Talk about hacks, counting out 13 stars?  We already have
special handling for skey, which I guess demonstrates it's used a fair
bit more than radius, but I'd like to get a quorum of developers to
agree on something better.  All * looks to me like "extra disabled".

For the OP, might I suggest "radiusenabled" for a bit of clarity?

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Radius Auth and Insecurity Outputs, Andrew Klettke, (Mon Apr 19, 12:14 pm)

Re: Radius Auth and Insecurity Outputs, Ted Unangst, (Mon Apr 19, 2:34 pm)

Re: Radius Auth and Insecurity Outputs, Andrew Klettke, (Mon Apr 19, 2:42 pm)

Re: Radius Auth and Insecurity Outputs, Ted Unangst, (Mon Apr 19, 3:04 pm)

Re: Radius Auth and Insecurity Outputs, Andrew Klettke, (Mon Apr 19, 3:09 pm)

Re: Radius Auth and Insecurity Outputs, Bryan Irvine, (Mon Apr 19, 3:13 pm)

Re: Radius Auth and Insecurity Outputs, Nicholas Marriott, (Mon Apr 19, 3:29 pm)

Re: Radius Auth and Insecurity Outputs, Stuart Henderson, (Mon Apr 19, 11:37 pm)

Re: Radius Auth and Insecurity Outputs, Alexander Hall, (Tue Apr 20, 4:04 am)

Re: Radius Auth and Insecurity Outputs, Stuart Henderson, (Tue Apr 20, 4:21 am)

Re: Radius Auth and Insecurity Outputs, Ted Unangst, (Tue Apr 20, 6:39 am)

Re: Radius Auth and Insecurity Outputs, Nicholas Marriott, (Tue Apr 20, 4:05 pm)


linux-kernel:
David Lang	Re: [patch] MTD: fix DOC2000/2001/2001PLUS build error
Steven Rostedt	Re: [PATCH] input: Fix interrupt enable in i8042_ctr when enabling interrupt fails
Linus Torvalds	Re: [patch] epoll use a single inode ...
David Miller	Re: tg3: unable to handle null pointer dereference
Frank Seidel	Re: [RFC 13/13] Char: nozomi, cleanup read and write
git-commits-head:
Linux Kernel Mailing List	amba: struct device - replace bus_id with dev_name(), dev_set_name()
Linux Kernel Mailing List	cpumask: make irq_set_affinity() take a const struct cpumask
Linux Kernel Mailing List	cgroups: fix probable race with put_css_set[_taskexit] and find_css_set
Linux Kernel Mailing List	[libata] Export ata_pio_queue_task() so that it can be used from sata_mv.
Linux Kernel Mailing List	[ARM] 5209/1: metronomefb: changes to use platform framebuffer
git:
Junio C Hamano	Re: mingw, windows, crlf/lf, and git
Junio C Hamano	Re: [PATCH 1/2] Teach git-describe to display distances from tags.
Daniel Barkalow	Re: git and mtime
Linus Torvalds	Re: [PATCH] Teach 'git pull' the '--rebase' option
Alex Riesen	Re: Easy shell question: how to make a script killing all his childs when killed?
freebsd-current:
Mark Linimon	Why the FreeBSD license will not be changing
Michael Moll	Re: Unable to boot on ECS K7S5A
FreeBSD Tinderbox	[head tinderbox] failure on ia64/ia64
Jille Timmermans	Re: svn commit: r185482 - head/sys/dev/ath/ath_rate/sample
Hayer, Sukhjinder	8_CURRENT boot problem
linux-netdev:
Timo Teräs	ip xfrm policy semantics
Andi Kleen	Re: [ANNOUNCE]: First release of nftables
John P Poet	Realtek 8111C transmit timed out
Jeff Garzik	Re: [PATCH] fix netxen_pci_tbl[] breakage
Jesper Dangaard Brouer	[PATCH] iputils: arping fails to set correct broadcast address