about freeradius0.2 running on Redhat linux---core dump

2001-10-09 Thread 

Hi.

 freeradius0.2 run on RedHat Linux7.1,use thread-pool mode,add
Simultaneous-Use to limit user login times.
it run Segmentation fault.

[root@owlinux main]# gdb ./radiusd core
GNU gdb 5.0rh-5 Red Hat Linux 7.1
Copyright 2001 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you
are
welcome to change it and/or distribute copies of it under certain
conditions.
Type show copying to see the conditions.
There is absolutely no warranty for GDB.  Type show warranty for
details.
This GDB was configured as i386-redhat-linux...
Core was generated by `./radiusd -x'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /lib/libnsl.so.1...done.
Loaded symbols for /lib/libnsl.so.1
Reading symbols from /lib/libresolv.so.2...done.
Loaded symbols for /lib/libresolv.so.2
Reading symbols from /lib/i686/libpthread.so.0...done.

warning: Unable to set global thread event mask: generic error
[New Thread 1024 (LWP 18524)]
Error while reading shared library symbols:
Can't attach LWP 18524: No such process
Reading symbols from /lib/libcrypt.so.1...done.
Loaded symbols for /lib/libcrypt.so.1
Reading symbols from /usr/lib/libltdl.so.0...done.
Loaded symbols for /usr/lib/libltdl.so.0
Reading symbols from /usr/lib/libexpat.so.0...done.
Loaded symbols for /usr/lib/libexpat.so.0
Reading symbols from /lib/i686/libc.so.6...done.
Loaded symbols for /lib/i686/libc.so.6
Reading symbols from /lib/libdl.so.2...done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /lib/libnss_files.so.2...done.
Loaded symbols for /lib/libnss_files.so.2
Reading symbols from /usr/local/lib/rlm_unix.so.0...done.
Loaded symbols for /usr/local/lib/rlm_unix.so.0
Reading symbols from /usr/local/lib/rlm_myldap.so.0...done.
Loaded symbols for /usr/local/lib/rlm_myldap.so.0
Reading symbols from /usr/lib/libldap50.so...done.
Loaded symbols for /usr/lib/libldap50.so
Reading symbols from /usr/local/lib/rlm_preprocess.so.0...done.
Loaded symbols for /usr/local/lib/rlm_preprocess.so.0
Reading symbols from /usr/local/lib/rlm_realm.so.0...done.
Loaded symbols for /usr/local/lib/rlm_realm.so.0
Reading symbols from /usr/local/lib/rlm_myfiles.so.0...done.
Loaded symbols for /usr/local/lib/rlm_myfiles.so.0
Reading symbols from /usr/local/lib/rlm_acct_unique.so.0...done.
Loaded symbols for /usr/local/lib/rlm_acct_unique.so.0
Reading symbols from /usr/local/lib/rlm_mydetail.so.0...done.
Loaded symbols for /usr/local/lib/rlm_mydetail.so.0
Reading symbols from /usr/local/lib/rlm_myradutmp.so.0...done.
Loaded symbols for /usr/local/lib/rlm_myradutmp.so.0
#0  0x400ec8a5 in __sigsuspend (set=0x4083898c)
at ../sysdeps/unix/sysv/linux/sigsuspend.c:45
45  ../sysdeps/unix/sysv/linux/sigsuspend.c: No such file or
directory.
in ../sysdeps/unix/sysv/linux/sigsuspend.c
(gdb) 
(gdb) 

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: radiusd dies unexpectedly...

2001-10-09 Thread victor 

I've found the problem:
it's because this sql_free_result() function called by sql_finish_query in
sql_oracle.c file. I've comment it out and it works now.

- Original Message -
From: victor [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, September 28, 2001 12:29 PM
Subject: radiusd dies unexpectedly...


 Hi all,
 I'm using freeradius with oracle db, and after a long fight I've succeeded
 to run it.
 The latest problem I have is that when the user disconnects from the
client
 radius server exits.
 Here are the lines just before radiusd dies:
 
 ...
 sql_escape in:  'radius'
 sql_escape out:  'radius'
 sql_set_user:  escaped user -- 'radius'
 radius_xlat:  'UPDATE radacct SET AcctStopTime = to_date('2001-09-28
 15:17:28','-mm-dd hh24:mi:ss'), AcctSessionTime = '247',
AcctInputOctets
 = '3065', AcctOutputOctets = '1051', AcctTerminateCause = 'NAS-Error',
 AcctStopDelay = '0', ConnectInfo_stop = '' WHERE AcctSessionId =
'ec0f0016'
 AND UserName = 'radius' AND NASIPAddress = '192.168.3.207''
 UPDATE radacct SET AcctStopTime = to_date('2001-09-28
15:17:28','-mm-dd
 hh24:mi:ss'), AcctSessionTime = '247', AcctInputOctets = '3065',
 AcctOutputOctets = '1051', AcctTerminateCause = 'NAS-Error', AcctStopDelay
=
 '0', ConnectInfo_stop = '' WHERE AcctSessionId = 'ec0f0016' AND UserName =
 'radius' AND NASIPAddress = '192.168.3.207'
 MASTER: exit on signal (11)
 ---

 Does anybody know where can be the problem?
 Thanks.



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: CHAP Authentication with SQL backend

2001-10-09 Thread aland 

Aaron Weiker [EMAIL PROTECTED] wrote:
 I am working on doing this myself, except with a MySQL database. I have the
 password in plain text and it does not authenticate CHAP. Are there compile
 time parameters that need to be set up in order to authenticate CHAP?

  No.

  Add the 'Password == foo' attribute to the request-config items,
when doing 'authorize'.  Set 'Auth-Type := Local' somewhere, and the
server core will take care of doing PAP or CHAP.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Debian package of 0.3

2001-10-09 Thread aland 

[EMAIL PROTECTED] (Matthew Wallis) wrote:
 There was some discussion of a Debian package for 0.2 and 0.3.
 Just wondering if that had been done?

  Not yet, I think.  But you should be able to create a debian package
from the source yourself.
 
 Also wondering why you seem to prefer setting everything
 up under /usr/local now. Referring mostly to the logging side
 of things.

  It has to go somewhere, and we KNOW that if we create
/usr/local/var, then it exists, and is platform portable.

  It's a lot of work to figure out where 'var' exists, and whether or
not we should use it.  For your purposes, you can always edit the
configuration file: that's what it's for.

 I have a /var partition specifically for logging, and was 
 rather irritated to find that logging was being done to
 /usr/local/var now. I did fix it myself, but would be
 interested to know if this was actually a design decision
 or it just happened.

  Implementation decision.
 
 And if I do install the .deb package, is it going to
 put the logs in the same place.

  I don't know.  Look in the 'debian' directory of the tar file.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: i have trouble with checkrad.pl ...

2001-10-09 Thread Andrew Melnikov 

 Hi,
 I'm trying to use Simultaneous-Use parameter and in users file I have the
 only line:
 
 DEFAULT  Simultaneous-Use := 1, Auth-Type := SQL
 

 anyway it doesn't work. I've enabled the debug option in checkrad.pl but
 this script, obviously, is never called by radius (because if I run it
 manualy, I get some messages in checkrad.log file).

I have exactly the same problem. I think it's related to module
fall-through problem. It seems that user module is never called because SQL
module returns success and this module is before users module in
raddb/users.

Last time I was advised to read a document about how to do failover and
the like in the /doc directory but I had no time to look there :(

Andrew


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Default entries in raddb/users file

2001-10-09 Thread Roban Bieber 

The date in your computer system is way off Michael.


Michael Dodd wrote:

 Thanks for the info Alan!  After I wrote the email I started to consider
 that It may not be possible.  I guess I should have spent more quality
 time with the docs, but I wasn't even sure that fail-over was what I was
 dealing with.  Thanks again!
 - Original Message -
 From: [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]
 Sent: Saturday, September 29, 2001 6:10 AM
 Subject: Re: Default entries in raddb/users file

  Michael Dodd [EMAIL PROTECTED] wrote:
   The goal is to have a radius server that will first attempt to
 authenticate
   from the FreeBSD system files ( /etc/passwd ) and if that fails, try to
   authenticate from the MySQL database.
 
OK, the fail-over mechanism isn't well documented in the
  radiusd.conf file.  See the file 'doc/configurable_failover' for more
  information.
 
And you might not even be able to do it, anyways.  Right now, the
  server really only does one kind of authentication at a time.  You can
  pick between them on the fly, but each request will use only one
  authentication.
 
Alan DeKok.
 
  -
  List info/subscribe/unsubscribe? See
 http://www.freeradius.org/list/users.html
 

 -
 List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: 2 comments about freeradius 0.3

2001-10-09 Thread aland 

Philippe Levan [EMAIL PROTECTED] wrote:
 My first attempt at running /usr/local/sbin/radiusd -X
 resulted in the following output :
 ...
 read_config_files:  reading realms
 /usr/local/etc/raddb/realms[33]: Cannot find 'clients' file entry of
 remote server LOCAL for realm epix.net
 Errors reading realms

  Yeah, that isn't very polite, is it?

 I can work around that problem by adding a client entry for localhost
 but I was wondering if it wouldn't be better to skip client_find at
 line 433 of src/main/files.c if hostnm is LOCAL.

  You're right.  And that also involves fixing other places in the
code, too.  (conffile.c, duplicate 'create realm' code, and proxy.c,
where it looks for the local realm.

  The local realm should have IP address 'INADDR_NONE', which is very
different from localhost.

  Anyways, I've fixed it, and the CVS snapshot from tonight should
have the fix.

 PW_PASSWORD handling by paircmp() in src/main/valuepair.c
 -

  Is ugly, I know...

 I do not know what that reference to a CHAP hack means, but if it
 really needed, I can see 2 conflicting requirements for paircmp().

  That is the problem.  I'll take a look, and see if I can figure out
anything more intelligent for it to do.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: radiusd dies unexpectedly...

2001-10-09 Thread aland 

victor [EMAIL PROTECTED] wrote:
 I've found the problem:
 it's because this sql_free_result() function called by sql_finish_query in
 sql_oracle.c file. I've comment it out and it works now.

  That's what I thought.

  Hmm.. I thought I had posted a message to the list about that.

  OK, I've fixed that in CVS, thanks.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Help!!

2001-10-09 Thread Aaron Schlesinger 

I'm new to handling radius and I'm up the creak here. 

I've been laboring with freeradius. I finally have it
using the mysql databases but I can't get the thing to

1) Return the right attributes on a user.
2) Work at all with user@realm.
3) Use the accounting tables.

I'm using NTradping to try and figure it out and I
followed the instructions as best I could at
http://www.frontios.com/freeradius.html

I am going to include a dump of the data in my mysql
tables.

I would REALLY be grateful if someone could point out
to me what the hell I'm doing wrong!! (Sorry for the
explicative. I've been pounding my head against the
wall for the last 72 hours.)

mysql show tables;
+--+
| Tables_in_radius |
+--+
| dictionary   |
| nas  |
| radacct  |
| radcheck |
| radgroupcheck|
| radgroupreply|
| radreply |
| realmgroup   |
| realms   |
| usergroup|
+--+
10 rows in set (0.00 sec)

mysql select * from dictionary;
Empty set (0.00 sec)

(Pegasus is my laptop using NTRadPing)

mysql select * from nas;
++-+---++--+---+--+---+--+
| id | nasname | shortname | ipaddr | type | ports
| secret   | community | snmp |
++-+---++--+---+--+---+--+
|  1 | pegasus | pegasus   | 64.7.8.154 | NULL | 5
| 18121812 | NULL  | NULL |
++-+---++--+---+--+---+--+
1 row in set (0.00 sec)

mysql select * from radacct;
+---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+
| RadAcctId | AcctSessionId | AcctUniqueId | UserName
| Realm  | NASIPAddress | NASPortId | NASPortType
| AcctStartTime   | AcctStopTime|
AcctSessionTime | AcctAuthentic | ConnectInfo_start |
ConnectInfo_stop | AcctInputOctets | AcctOutputOctets
| CalledStationId | CallingStationId |
AcctTerminateCause | ServiceType | FramedProtocol |
FramedIPAddress | AcctStartDelay | AcctStopDelay |
+---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+
| 1 |   |  | aarons  
| hotadz.com |  |  NULL | NULL   
| -00-00 00:00:00 | -00-00 00:00:00 | 
  NULL | NULL  | NULL  | NULL 
   |NULL | NULL | 
   |  ||
Framed  | PPP| 255.255.255.254 |  
NULL |  NULL |
+---+---+--+--++--+---+-+-+-+-+---+---+--+-+--+-+--++-++-++---+
1 row in set (0.02 sec)


mysql select * from radcheck;
++-+---+--+
| id | UserName| Attribute | Value|
++-+---+--+
|  1 | aarons  | Password  | testing  |
|  2 | [EMAIL PROTECTED] | Password  | 18121812 |
|  3 | [EMAIL PROTECTED]   | Password  | testing  |
++-+---+--+
3 rows in set (0.00 sec)

mysql select * from radgroupcheck;
++---+---+-+
| id | GroupName | Attribute | Value  
|
++---+---+-+
|  1 | test  | Service-Type  | Framed 
|
|  2 | test  | Framed-Protocol   | PPP
|
|  3 | test  | Framed-IP-Address | 255.255.255.254
|
|  4 | test  | Framed-IP-Netmask | 255.255.255.255
|
|  5 | test  | Idle-Timeout  | 600
|
|  6 | test  | Session-Timeout   | 28800  
|
++---+---+-+
6 rows in set (0.01 sec)

mysql select * from radgroupreply;
++---+---+-+
| id | GroupName | Attribute | Value  
|
++---+---+-+
|  1 | test  | Service-Type  | Framed 
|
|  2 | test  |

oracle freeradius 3 setup

2001-10-09 Thread Henry Su 



Hi, I am a newcomer 
on freeradius, could any one point me out some steps on setting up freeradius 
0.3 using oracle 8i to authenticate? Thanks a lot. If you do not have 
oracle experience, could u pls give me the steps for 
mysql?

__
Henry Su 
 

NTT Multimedia Communications Laboratories, 
Inc.
250 Cambridge Avenue 
Suite 300
Palo Alto, CA 94306, 
USA (PDT:UTC -7H)
Tel: +1 650 833 
3652
Fax: +1 650 326 1878
___