On 11/10/10 23:03, Bill Thompson wrote:
Because for licencing reasons the packaged version does not have SSL support, thereby ruling out EAP-TLS and other certificate-secured authentication methods.The big question is why compile radius from source? If you use the Debian package for Freeradius, this is mostly done for you.
Radius is typically used for securing wireless or VPN connections, and the normal security measures for these technologies is good. Pretty much the only reason for going to Radius is to use certificates, and then probably only for wireless as VPN systems usually have certificate-using modes, though they may not be as convenient for central administration as Radius.
-- Joe