about freeradius0.2 running on Redhat linux---core dump
Hi. freeradius0.2 run on RedHat Linux7.1,use thread-pool mode,add Simultaneous-Use to limit user login times. it run Segmentation fault. [root@owlinux main]# gdb ./radiusd core GNU gdb 5.0rh-5 Red Hat Linux 7.1 Copyright 2001 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as i386-redhat-linux... Core was generated by `./radiusd -x'. Program terminated with signal 11, Segmentation fault. Reading symbols from /lib/libnsl.so.1...done. Loaded symbols for /lib/libnsl.so.1 Reading symbols from /lib/libresolv.so.2...done. Loaded symbols for /lib/libresolv.so.2 Reading symbols from /lib/i686/libpthread.so.0...done. warning: Unable to set global thread event mask: generic error [New Thread 1024 (LWP 18524)] Error while reading shared library symbols: Can't attach LWP 18524: No such process Reading symbols from /lib/libcrypt.so.1...done. Loaded symbols for /lib/libcrypt.so.1 Reading symbols from /usr/lib/libltdl.so.0...done. Loaded symbols for /usr/lib/libltdl.so.0 Reading symbols from /usr/lib/libexpat.so.0...done. Loaded symbols for /usr/lib/libexpat.so.0 Reading symbols from /lib/i686/libc.so.6...done. Loaded symbols for /lib/i686/libc.so.6 Reading symbols from /lib/libdl.so.2...done. Loaded symbols for /lib/libdl.so.2 Reading symbols from /lib/ld-linux.so.2...done. Loaded symbols for /lib/ld-linux.so.2 Reading symbols from /lib/libnss_files.so.2...done. Loaded symbols for /lib/libnss_files.so.2 Reading symbols from /usr/local/lib/rlm_unix.so.0...done. Loaded symbols for /usr/local/lib/rlm_unix.so.0 Reading symbols from /usr/local/lib/rlm_myldap.so.0...done. Loaded symbols for /usr/local/lib/rlm_myldap.so.0 Reading symbols from /usr/lib/libldap50.so...done. Loaded symbols for /usr/lib/libldap50.so Reading symbols from /usr/local/lib/rlm_preprocess.so.0...done. Loaded symbols for /usr/local/lib/rlm_preprocess.so.0 Reading symbols from /usr/local/lib/rlm_realm.so.0...done. Loaded symbols for /usr/local/lib/rlm_realm.so.0 Reading symbols from /usr/local/lib/rlm_myfiles.so.0...done. Loaded symbols for /usr/local/lib/rlm_myfiles.so.0 Reading symbols from /usr/local/lib/rlm_acct_unique.so.0...done. Loaded symbols for /usr/local/lib/rlm_acct_unique.so.0 Reading symbols from /usr/local/lib/rlm_mydetail.so.0...done. Loaded symbols for /usr/local/lib/rlm_mydetail.so.0 Reading symbols from /usr/local/lib/rlm_myradutmp.so.0...done. Loaded symbols for /usr/local/lib/rlm_myradutmp.so.0 #0 0x400ec8a5 in __sigsuspend (set=0x4083898c) at ../sysdeps/unix/sysv/linux/sigsuspend.c:45 45 ../sysdeps/unix/sysv/linux/sigsuspend.c: No such file or directory. in ../sysdeps/unix/sysv/linux/sigsuspend.c (gdb) (gdb) - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: radiusd dies unexpectedly...
I've found the problem: it's because this sql_free_result() function called by sql_finish_query in sql_oracle.c file. I've comment it out and it works now. - Original Message - From: victor [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, September 28, 2001 12:29 PM Subject: radiusd dies unexpectedly... Hi all, I'm using freeradius with oracle db, and after a long fight I've succeeded to run it. The latest problem I have is that when the user disconnects from the client radius server exits. Here are the lines just before radiusd dies: ... sql_escape in: 'radius' sql_escape out: 'radius' sql_set_user: escaped user -- 'radius' radius_xlat: 'UPDATE radacct SET AcctStopTime = to_date('2001-09-28 15:17:28','-mm-dd hh24:mi:ss'), AcctSessionTime = '247', AcctInputOctets = '3065', AcctOutputOctets = '1051', AcctTerminateCause = 'NAS-Error', AcctStopDelay = '0', ConnectInfo_stop = '' WHERE AcctSessionId = 'ec0f0016' AND UserName = 'radius' AND NASIPAddress = '192.168.3.207'' UPDATE radacct SET AcctStopTime = to_date('2001-09-28 15:17:28','-mm-dd hh24:mi:ss'), AcctSessionTime = '247', AcctInputOctets = '3065', AcctOutputOctets = '1051', AcctTerminateCause = 'NAS-Error', AcctStopDelay = '0', ConnectInfo_stop = '' WHERE AcctSessionId = 'ec0f0016' AND UserName = 'radius' AND NASIPAddress = '192.168.3.207' MASTER: exit on signal (11) --- Does anybody know where can be the problem? Thanks. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: CHAP Authentication with SQL backend
Aaron Weiker [EMAIL PROTECTED] wrote: I am working on doing this myself, except with a MySQL database. I have the password in plain text and it does not authenticate CHAP. Are there compile time parameters that need to be set up in order to authenticate CHAP? No. Add the 'Password == foo' attribute to the request-config items, when doing 'authorize'. Set 'Auth-Type := Local' somewhere, and the server core will take care of doing PAP or CHAP. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Debian package of 0.3
[EMAIL PROTECTED] (Matthew Wallis) wrote: There was some discussion of a Debian package for 0.2 and 0.3. Just wondering if that had been done? Not yet, I think. But you should be able to create a debian package from the source yourself. Also wondering why you seem to prefer setting everything up under /usr/local now. Referring mostly to the logging side of things. It has to go somewhere, and we KNOW that if we create /usr/local/var, then it exists, and is platform portable. It's a lot of work to figure out where 'var' exists, and whether or not we should use it. For your purposes, you can always edit the configuration file: that's what it's for. I have a /var partition specifically for logging, and was rather irritated to find that logging was being done to /usr/local/var now. I did fix it myself, but would be interested to know if this was actually a design decision or it just happened. Implementation decision. And if I do install the .deb package, is it going to put the logs in the same place. I don't know. Look in the 'debian' directory of the tar file. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: i have trouble with checkrad.pl ...
Hi, I'm trying to use Simultaneous-Use parameter and in users file I have the only line: DEFAULT Simultaneous-Use := 1, Auth-Type := SQL anyway it doesn't work. I've enabled the debug option in checkrad.pl but this script, obviously, is never called by radius (because if I run it manualy, I get some messages in checkrad.log file). I have exactly the same problem. I think it's related to module fall-through problem. It seems that user module is never called because SQL module returns success and this module is before users module in raddb/users. Last time I was advised to read a document about how to do failover and the like in the /doc directory but I had no time to look there :( Andrew - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Default entries in raddb/users file
The date in your computer system is way off Michael. Michael Dodd wrote: Thanks for the info Alan! After I wrote the email I started to consider that It may not be possible. I guess I should have spent more quality time with the docs, but I wasn't even sure that fail-over was what I was dealing with. Thanks again! - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, September 29, 2001 6:10 AM Subject: Re: Default entries in raddb/users file Michael Dodd [EMAIL PROTECTED] wrote: The goal is to have a radius server that will first attempt to authenticate from the FreeBSD system files ( /etc/passwd ) and if that fails, try to authenticate from the MySQL database. OK, the fail-over mechanism isn't well documented in the radiusd.conf file. See the file 'doc/configurable_failover' for more information. And you might not even be able to do it, anyways. Right now, the server really only does one kind of authentication at a time. You can pick between them on the fly, but each request will use only one authentication. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: 2 comments about freeradius 0.3
Philippe Levan [EMAIL PROTECTED] wrote: My first attempt at running /usr/local/sbin/radiusd -X resulted in the following output : ... read_config_files: reading realms /usr/local/etc/raddb/realms[33]: Cannot find 'clients' file entry of remote server LOCAL for realm epix.net Errors reading realms Yeah, that isn't very polite, is it? I can work around that problem by adding a client entry for localhost but I was wondering if it wouldn't be better to skip client_find at line 433 of src/main/files.c if hostnm is LOCAL. You're right. And that also involves fixing other places in the code, too. (conffile.c, duplicate 'create realm' code, and proxy.c, where it looks for the local realm. The local realm should have IP address 'INADDR_NONE', which is very different from localhost. Anyways, I've fixed it, and the CVS snapshot from tonight should have the fix. PW_PASSWORD handling by paircmp() in src/main/valuepair.c - Is ugly, I know... I do not know what that reference to a CHAP hack means, but if it really needed, I can see 2 conflicting requirements for paircmp(). That is the problem. I'll take a look, and see if I can figure out anything more intelligent for it to do. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: radiusd dies unexpectedly...
victor [EMAIL PROTECTED] wrote: I've found the problem: it's because this sql_free_result() function called by sql_finish_query in sql_oracle.c file. I've comment it out and it works now. That's what I thought. Hmm.. I thought I had posted a message to the list about that. OK, I've fixed that in CVS, thanks. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Help!!
I'm new to handling radius and I'm up the creak here. I've been laboring with freeradius. I finally have it using the mysql databases but I can't get the thing to 1) Return the right attributes on a user. 2) Work at all with user@realm. 3) Use the accounting tables. I'm using NTradping to try and figure it out and I followed the instructions as best I could at http://www.frontios.com/freeradius.html I am going to include a dump of the data in my mysql tables. I would REALLY be grateful if someone could point out to me what the hell I'm doing wrong!! (Sorry for the explicative. I've been pounding my head against the wall for the last 72 hours.) mysql show tables; +--+ | Tables_in_radius | +--+ | dictionary | | nas | | radacct | | radcheck | | radgroupcheck| | radgroupreply| | radreply | | realmgroup | | realms | | usergroup| +--+ 10 rows in set (0.00 sec) mysql select * from dictionary; Empty set (0.00 sec) (Pegasus is my laptop using NTRadPing) mysql select * from nas; ++-+---++--+---+--+---+--+ | id | nasname | shortname | ipaddr | type | ports | secret | community | snmp | ++-+---++--+---+--+---+--+ | 1 | pegasus | pegasus | 64.7.8.154 | NULL | 5 | 18121812 | NULL | NULL | ++-+---++--+---+--+---+--+ 1 row in set (0.00 sec) mysql select * from radacct; +---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+ | RadAcctId | AcctSessionId | AcctUniqueId | UserName | Realm | NASIPAddress | NASPortId | NASPortType | AcctStartTime | AcctStopTime| AcctSessionTime | AcctAuthentic | ConnectInfo_start | ConnectInfo_stop | AcctInputOctets | AcctOutputOctets | CalledStationId | CallingStationId | AcctTerminateCause | ServiceType | FramedProtocol | FramedIPAddress | AcctStartDelay | AcctStopDelay | +---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+ | 1 | | | aarons | hotadz.com | | NULL | NULL | -00-00 00:00:00 | -00-00 00:00:00 | NULL | NULL | NULL | NULL |NULL | NULL | | || Framed | PPP| 255.255.255.254 | NULL | NULL | +---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+ 1 row in set (0.02 sec) mysql select * from radcheck; ++-+---+--+ | id | UserName| Attribute | Value| ++-+---+--+ | 1 | aarons | Password | testing | | 2 | [EMAIL PROTECTED] | Password | 18121812 | | 3 | [EMAIL PROTECTED] | Password | testing | ++-+---+--+ 3 rows in set (0.00 sec) mysql select * from radgroupcheck; ++---+---+-+ | id | GroupName | Attribute | Value | ++---+---+-+ | 1 | test | Service-Type | Framed | | 2 | test | Framed-Protocol | PPP | | 3 | test | Framed-IP-Address | 255.255.255.254 | | 4 | test | Framed-IP-Netmask | 255.255.255.255 | | 5 | test | Idle-Timeout | 600 | | 6 | test | Session-Timeout | 28800 | ++---+---+-+ 6 rows in set (0.01 sec) mysql select * from radgroupreply; ++---+---+-+ | id | GroupName | Attribute | Value | ++---+---+-+ | 1 | test | Service-Type | Framed | | 2 | test |
oracle freeradius 3 setup
Hi, I am a newcomer on freeradius, could any one point me out some steps on setting up freeradius 0.3 using oracle 8i to authenticate? Thanks a lot. If you do not have oracle experience, could u pls give me the steps for mysql? __ Henry Su NTT Multimedia Communications Laboratories, Inc. 250 Cambridge Avenue Suite 300 Palo Alto, CA 94306, USA (PDT:UTC -7H) Tel: +1 650 833 3652 Fax: +1 650 326 1878 ___