Priority list as of 0.9.4:

1. Better standards compliance when deciding late to reject: add operator to
   clear reply list of all attributes in space RAD-ATR, except for Proxy-State 
   and Reply-Message
2. Proper logging module
3. PAM and MySQL/DBM r/w modules
4. Tagged/encrypted attribute support, integrated User-Password encryption
5. asynchronous module interface support
6. Better build system; use own version of install, move to CVS
7. Package for Debian
a. DNS resolver module that returns strs for ips and vice versa
8. Full-featured radclient; proxy module
9. MSCHAPv2/MPPE support (using base64, sha1, ntdes operators)
b. Add rule-based language instead of free-form expression (using same VM)

And of course always:

* Better documentation
* More, useful sample configuration/behaviour combos

