the only hard issue i have heard is log access and retention. it is
clear radius logs, the only logs being used (aside from landings and
take-offs of black helicopters), should be destroyed at the end of the
meeting. but should they be wiped more frequently?
their intended use is solely for debugging for users who have problems
authenticating. will folk be happy with not being able to check
"yesterday it worked, today not?" if so, ops can destroy them nightly
or more frequently.
note that the ops group has no direct need for logs. it's the users who
we presume want any authentication problems which they might have to be
Ietf mailing list