On Tue, 30 Nov 2004, Panagiotis Mavros wrote:
Sorry to bother you but it seems that i havent make my self clear about what i want to do. User-Name and Password attributes MUST be EXACT 15 and 32 octets long(15 for username and 32 for pass). If radius receives a different attribute length , it MUST discard the packet. That is usernames and passwords have ALL the same and not variable length. So a user must have a 15 octet length Username and radius server checks if the Username attribute is 15 octets. If it is more or less it drops it...
Ok i know that this sounds crazy and that nobody would ever want something like that, but this is what i have to implement....
So i want to alter the src code but i cant find which files i must alter. And the problem is that i dont know if EAP-MD5 authentication wil cause problem when using a fixed length password
Thanks
You could write a simple module or just an even smaller perl script that will check the corresponding attributes in the authorize section and return reject if they are not exactly what you expect.
From: "Alan DeKok" <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: Source code Date: Tue, 30 Nov 2004 09:30:21 -0500
"Panagiotis Mavros" <[EMAIL PROTECTED]> wrote:
> I understand that freeradius is based on RFCs and that changing some
> attributes modifies the protocol. But in my case I want every radius packet
> to have fixed User-Name and Password length (because my thesis
> implementation says so!).
I could ask why it matters, but I don't think that's relevant.
> All I asked is which files contain the code that determine the > length of these attributes when I use EAP-MD5 authentication.
I already told you:
> > The length of the attributes is determined by their content. See > >the RFC's.
If you use a short User-Name, the User-Name attribute is short, and you don't have to modify the protocol.
If you use a long User-Name, then you won't be able to fit it into a short attribute like you want.
RADIUS already does what you want. You don't have to change anything.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
