"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "raddb/mods-available/eap" between
freeradius-server-3.0.22.tar.bz2 and freeradius-server-3.0.23.tar.bz2

About: FreeRADIUS Server Project - a high performance and highly configurable RADIUS server.

eap  (freeradius-server-3.0.22.tar.bz2):eap  (freeradius-server-3.0.23.tar.bz2)
# -*- text -*- # -*- text -*-
## ##
## eap.conf -- Configuration for EAP types (PEAP, TTLS, etc.) ## eap.conf -- Configuration for EAP types (PEAP, TTLS, etc.)
## ##
## $Id: 239ac4c00c1240f38d21881eec5588a84d1ba0fe $ ## $Id: 0127de6421af08d2b7e3033d57762dd5f7109dad $
####################################################################### #######################################################################
# #
# Whatever you do, do NOT set 'Auth-Type := EAP'. The server # Whatever you do, do NOT set 'Auth-Type := EAP'. The server
# is smart enough to figure this out on its own. The most # is smart enough to figure this out on its own. The most
# common side effect of setting 'Auth-Type := EAP' is that the # common side effect of setting 'Auth-Type := EAP' is that the
# users then cannot use ANY other authentication method. # users then cannot use ANY other authentication method.
# #
eap { eap {
# Invoke the default supported EAP type when # Invoke the default supported EAP type when
skipping to change at line 424 skipping to change at line 424
# #
# Older TLS versions are insecure and deprecated. # Older TLS versions are insecure and deprecated.
# #
# In order to enable TLS 1.0 and TLS 1.1, you may # In order to enable TLS 1.0 and TLS 1.1, you may
# also need to update cipher_list below to: # also need to update cipher_list below to:
# #
# cipher_list = "DEFAULT@SECLEVEL=1" # cipher_list = "DEFAULT@SECLEVEL=1"
# #
# The values must be in quotes. # The values must be in quotes.
# #
# We also STRONGLY RECOMMEND to set
#
# tls_max_version = "1.2"
#
# While the server will accept "1.3" as a value,
# most EAP supplicants WILL NOT DO TLS 1.3 PROPERLY.
#
# i.e. they WILL NOT WORK, SO DO NOT ASK QUESTIONS ON
# THE LIST ABOUT WHY IT DOES NOT WORK.
#
# The TLS 1.3 support is here for future
# compatibility, as clients get upgraded, and people
# don't upgrade their copies of FreeRADIUS.
#
# Also note that we only support TLS 1.3 for EAP-TLS.
# Other versions of EAP (PEAP, TTLS, FAST) DO NOT
# SUPPORT TLS 1.3.
#
tls_min_version = "1.2" tls_min_version = "1.2"
tls_max_version = "1.2" tls_max_version = "1.2"
# Elliptical cryptography configuration # Elliptical cryptography configuration
# #
# This configuration should be one of the following: # This configuration should be one of the following:
# #
# * a name of the curve to use, e.g. "prime256v1". # * a name of the curve to use, e.g. "prime256v1".
# #
# * a colon separated list of curve NIDs or names. # * a colon separated list of curve NIDs or names.
 End of changes. 2 change blocks. 
1 lines changed or deleted 19 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)