Here's where I am now:
I have a user named radiusd in group radiusd.
I have tried chmod -R a+rwx /etc/raddb. I still get the
5968:error:0200100D:system library:fopen:Permission
Denied:bss_file.c:104:fopen('/etc/raddb/certs/demoCA/cacert.pem','r')
error.
ls -l on the cacert.pem file shows that thefile has rwxrwxrwx. =(
I know we don't want to run the server as root, but I'm running out of
options in this Red Hat 9 system.
Could it be rights to the ssl libraries????? The 1st error is the
fopen one, are the others symptoms of the 1st one?
Here's the current rights setup and execution:
[EMAIL PROTECTED] root]# ls -l /etc/raddb/certs/demoCA/
total 20
-rwxrwxrwx 1 radiusd radiusd 1432 Feb 28 11:26 cacert.pem
-rwxrwxrwx 1 radiusd radiusd 276 Feb 28 10:40 index.txt
-rwxrwxrwx 1 radiusd radiusd 140 Feb 28 10:40 index.txt.old
-rwxrwxrwx 1 radiusd radiusd 3 Feb 28 10:40 serial
-rwxrwxrwx 1 radiusd radiusd 3 Feb 28 10:40 serial.old
[EMAIL PROTECTED] root]# /etc/init.d/radiusd start
Starting RADIUS server: Fri Apr 1 15:57:43 2005 : Info: Starting -
reading configuration files ...
5975:error:0200100D:system library:fopen:Permission
denied:bss_file.c:104:fopen('/etc/raddb/certs/demoCA/cacert.pem','r')
5975:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:109:
5975:error:0B084002:x509 certificate
routines:X509_load_cert_crl_file:system lib:by_file.c:279:
[FAILED]
[EMAIL PROTECTED] root]# /usr/local/sbin/radiusd -A
Fri Apr 1 15:57:51 2005 : Info: Starting - reading configuration files ...
5977:error:0200100D:system library:fopen:Permission
denied:bss_file.c:104:fopen('/etc/raddb/certs/demoCA/cacert.pem','r')
5977:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:109:
5977:error:0B084002:x509 certificate
routines:X509_load_cert_crl_file:system lib:by_file.c:279:
[EMAIL PROTECTED] root]#
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
