From 4bc7577db2eb45c20d7714979c17a06a48721f75 Mon Sep 17 00:00:00 2001 From: Martin Willi Date: Mon, 2 Apr 2012 13:58:21 +0200 Subject: [PATCH] More detailed NEWS about RADIUS extensions --- NEWS | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/NEWS b/NEWS index a662b06a7..5beefb739 100644 --- a/NEWS +++ b/NEWS @@ -4,8 +4,15 @@ strongswan-4.6.3 - The tnc-pdp plugin implements a RADIUS server interface allowing a strongSwan TNC server to act as a Policy Decision Point. -- Added infrastructure to listen to RADIUS Dynamic Authorization - Extension requests. +- The eap-radius authentication backend enforces Session-Timeout attributes + using RFC4478 repeated authentication and acts upon RADIUS Dynamic + Authorization extensions, RFC 5176. Currently supported are disconnect + requests and CoA messages containing a Session-Timeout. + +- The eap-radius plugin can forward arbitrary RADIUS attributes from and to + clients using custom IKEv2 notify payloads. The new radattr plugin reads + attributes to include from files and prints received attributes to the + console. - Added support for untruncated MD5 and SHA1 HMACs in ESP as used in RFC 4595.