g into the phone exchange and
sniffing the password off the wire than someone lifting the entire set
of passwords from my radius server.
also, it's possible for you to actually add the cleartext password to
/etc/raddb/users(.conf) and have that override the shadow password. less
messing around
er linux kernels, or b) you ran into a limit (run ulimit
-a to check this, although this probably isn't the case, since you're
running as root).
run "dmesg" after this happens, and check that it hasn't mentioned
something about killing your process.
Andrew Pilley
>
as more info on
the subject
look into using JOIN too, but beware, that joins can take a large amount
of memory and processing power, unless you're careful about your usage.
Hope that helps
Andrew Pilley
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius
queries manually, and seeing what they produce?
make sure it's actually retreiving a useful set of attributes...
Andrew Pilley
>
> --
> Best regards,
> CEBKA mailto:[EMAIL PROTECTED]
>
>
> -
> List info/subscribe/unsubscribe? See
chap
}
chap
}
keep in mind that i'm using pap here at my site, so i deal with
Crypt-Password md5 hashes. Make sure that the dialup user is DEFINENTLY
using chap.
Andrew Pilley
On Sat, Jan 11, 2003 at 09:51:03PM +0300, CEBKA wrote:
> Hello, Andrew
>
-
List info/subscribe/
On Fri, Jan 10, 2003 at 08:20:04PM -0800, Don O'Neil wrote:
> Everyone,
> I'm a newbie here, so please don't hack me to shreds. I've read the FAQ and
> Docs closely, and tried everything I can, but I must be missing something
OT to this, but think about getting the book RADIUS, from the orei
On Fri, Jan 10, 2003 at 11:26:32AM -0600, Ray wrote:
> everything seems to be working well. but we are having some minor issues.
> OT humor: how do you make it clear that 'HP Authorized Customer' is not their
> username?
if it happens regularly enough with that exact username, create a user
wit
On Fri, Jan 10, 2003 at 07:50:35PM +0300, CEBKA wrote:
> Hello
>
> Sorry, if this question took place, but I want to know may rlm_mysql
> module make authentication. If I have a user in radcheck/radreply
> tables with correct AV values, when I use radtest with this username
> and passwor
On Fri, Jan 10, 2003 at 10:07:34AM -0500, Roy Wills wrote:
> hmmmid ont think i am explaining this very well. I need some users to only have
>access for a week
> (ie: monday to following monday) and some users have a month of access (ie: Jan 1 to
>Jan 31). I do not
> think that actuall sess
On Mon, Jan 06, 2003 at 10:51:48AM -0500, Alan DeKok wrote:
> Andrew Pilley <[EMAIL PROTECTED]> wrote:
> > Hey. Just a quick question. if a radius+mysql server is unexpectedly
> > shut down (power failure or otherwise) without being given a chance to
> > quit, and ther
re completely closed off, and approximate
the kill-time. won't be able to guess the download time tho, but we
don't have too many clients on that plan that aren't using satellite
(where we charge rates for the satellite instead of the dialup
downloads)
Thanks
Andrew Pilley
> ---
nd 4000max series access server.
(obviously, the first goal will be to not lose power on the access
server at all, since that contains the final accounting data.)
thanks for the advice,
Andrew Pilley
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ally,
freeradius+SQL seems fast, and responsive (since it doesn't need to keep
checking the shadow/passwd files every time someone logs on). Yhe added
security can be a bonus too (I've seen a few instances where all radius
users could login to the radius server itself!)
HTH
Andr
ld that the book published by O'reilly called "RADIUS" also
contains a section on setting up freeradius, and using it with mysql.
Andrew Pilley
>
> --
> robert canary
> system services
> OhioCounty.Net
> [EMAIL PROTECTED]
> (270)298-9331 Office
> (270)298-7449
merica, or www.sage-au.org.au
for australia) for your area. These organisations are often pay-to-join,
but are invaluable for technical advice.
Regards
Andrew Pilley
>
> Thanks!
> --
> me
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
;='
signifying (as in freeradius) that that is a "reply" attribute?
If it's a check, i need to crypt() those password from the users file
(no problems for me there). however, if it's being used as a reply, i'm
guessing the lack of Auth-Type = System would make the login
ing itself without disconnecting people may make radius think so,
until the accounting packets come in)
Andrew Pilley
On Sat, Dec 21, 2002 at 08:10:04AM +0400, Wisam Najim wrote:
> Hi All,
>
> I'm authenticating ISDN users from users file while normal dialup users are
> authent
whoa. okay. false alarm. looks like it was a bug in 0.8.0. 0.8.1 (which
i didn't notice was out yet) works fine.
sorry to bug people
Andrew Pilley
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
stpass] (from client pm1 port 1)
now, i've double-checked that it's using pap as best i can, but from
there, it doesn't look like it is...
can anyone shed some light on where i may have left something out of the
config?
thanks
Andrew Pilley
On Thu, Dec 19, 2002
and Exec-Program-Wait to run
programs after authentication, optionally waiting until it finishes
before proceeding. i believe the details are documented in the file
variables.txt.
Andrew Pilley
>
>
> thx
>
> --
> Remus
>
>
>
> -
> List info/subscri
On Wed, Dec 18, 2002 at 11:18:56AM -0500, Alan DeKok wrote:
> Andrew Pilley <[EMAIL PROTECTED]> wrote:
> > since md5 is a one-way hash, i can't just recover the passwords and
> > recrypt them.
>
> Just use them in place.
i've tried that. i changed the Cryp
ng freeradius 0.8, compiled by me into a debian package, and
a portmaster 2e to access the radius server (my test platform)
Thanks for the help
Andrew Pilley
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
22 matches
Mail list logo