[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [radext] RDTLS #67 (new): RADIUS vs RDTLS disambiguation (TLS Alert)
radext issue tracker wrote:
> Until the TLS session is fully established you must be able to accept
> normal RADIUS packets in the case where client_supports_rdtls is false or
> someone can spoof a request with the intent to prematurely lock in the use
> of DTLS.
Hmm... that's true.
> In terms of the text this draft should also burn the alert ctype (21) as
> it may be sent by the client as part of its peer validation before the
> session is established.
I'll look into ways to avoid doing that.
to unsubscribe send a message to firstname.lastname@example.org with
the word 'unsubscribe' in a single line as the message text body.