(RADIATOR) Server and Client verification in RADSEC
Jan Tomasek
jan at tomasek.cz
Tue Nov 22 05:44:47 CST 2005
Hello Mike,
you were not reading what I wrote. :(( Why to try invent "own" solution
if there is standard one?
> Therfore I would expect you to set TLS_ExpectedPeerName to such a name
> or pattern.
I have two clients named radsec1.cesnet.cz and radsec1.tomasek.cz. I
might set TLS_ExpectedPeerName to radsec1.(cesnet|tomasek).cz. Ok.
But... How about adding ldap2.bflmpsvz.cz? Now this is no way to go...
Plase give one hour of your time to reading those RFC.
--
--------------------------------------------------------------
Jan Tomasek aka Semik work: CESNET, z.s.p.o.
http://www.tomasek.cz/ Zikova 4, 160 00 Praha 6
Czech Republic
phone(work): +420 2 2435 5279 http://www.cesnet.cz/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
URL: <http://www.open.com.au/pipermail/radiator/attachments/20051122/6b9e3b15/attachment.bin>
More information about the radiator
mailing list