> On Wed, 20 Sep 1995, Ron Tapia wrote:
>
> > If a radius server gets an Access-Request packet (from a pm2e or
> > pm2eR) with a User-Name attribute `foo', and responds with
> > an Access-Accept packet with a different User-Name, will the pm
> > use the User-Name from the Access-Accept packet for rlogin?
>
> No. It will not allow you to change the User-Name field.
I am soooo glad that I found this out now and not later. It's not
difficult to get around.
Doh!
I just found the following in the draft:
5.40. Table of Attributes
The following table provides a guide to which attributes may be found
in which kinds of packets, and in what quantity.
Request Accept Reject Challenge Attribute
1 0 0 0 User-Name
Thanks,
Ron
PS - Sorry for posting without reading the draft more thoroughly.
-- Hagbard@LambdaMOO % I mean, it's the 90's. You can't just go Ron@JaysHouseMOO % around trusting every layer you interface Ron@MediaMOO % with. - tommyd@microsoft.com <A HREF="http://www.nmia.com/~tapia/">My home page</A>