Disable EAP-PWD by default.

author Alan T. DeKok <aland@freeradius.org>

Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)

committer Alan T. DeKok <aland@freeradius.org>

Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)
author Alan T. DeKok <aland@freeradius.org>
Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)
committer Alan T. DeKok <aland@freeradius.org>
Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)
diff --git a/raddb/mods-available/eap b/raddb/mods-available/eap

index 0ac360e64697932b69bcff17f3b2db4fdda70b97..5ec361482939ce1d03f03b4c3d65580460ea0c2b 100644 (file)
--- a/raddb/mods-available/eap
+++ b/raddb/mods-available/eap
@@ -78,14 +78,14 @@ eap {
         # 
         # EAP-pwd -- secure password-based authentication
         #
-       pwd {
-               group = 19
+#      pwd {
+#              group = 19
  
                 #
-               server_id = theserver@example.com
+#              server_id = theserver@example.com
  
                 #  This has the same meaning as for TLS.
-               fragment_size = 1020
+#              fragment_size = 1020
  
                 # The virtual server which determines the 
                 # "known good" password for the user.
@@ -93,8 +93,8 @@ eap {
                 # section is processed.  EAP-PWD requests can be
                 # distinguished by having a User-Name, but
                 # no User-Password, CHAP-Password, EAP-Message, etc.
-               virtual_server = "inner-tunnel"
-       }
+#              virtual_server = "inner-tunnel"
+#      }
  
         # Cisco LEAP
         #
author	Alan T. DeKok <aland@freeradius.org>
	Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)
committer	Alan T. DeKok <aland@freeradius.org>
	Tue, 4 Sep 2012 12:13:51 +0000 (14:13 +0200)