[RADIATOR] AuthBy DUO issue
Heikki Vatiainen
hvn at open.com.au
Wed Jun 30 16:48:23 UTC 2021
On 11.6.2021 14.42, Heikki Vatiainen wrote:
> On 8.6.2021 15.06, Alexander.Hartmaier at t-systems.com wrote:
>> What is your plan to fix this issue?
>
> One option is to select only TLSv1.2 by default and make it
> configurable. If the problem is with Net::HTTPS::NB or HTTP::Async,
> allow by default TLSv1.3 when a working version of this/those is detected.
AuthBy DUO now disables TLSv1.3 until a better fix is available. DUO
seems to support TLS versions older than TLSv1.2 so for this reason
TLSv1.2 is not forced by Radiator. Those who still require older
versions can still continue to use them. TLS library continues to
negotiate the highest version that's available.
Updated packages are available from Radiator patch package downloads.
Thanks,
Heikki
--
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, TACACS+, PAM, Active Directory,
EAP, TLS, TTLS, PEAP, WiMAX, RSA, Vasco, Yubikey, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, etc.
More information about the radiator
mailing list