Hello !
I have experienced a problem with simultaneous logins of such a case.
I have global RewriteUsername defined in my radius.cfg:
RewriteUsername tr/[A-Z]/[a-z]/
RewriteUsername s/^(.*)\/(.*)/$2/
RewriteUsername s/^(.*)\\(.*)/$2/
RewriteUsername tr/A-Za-z0-9_@,\\\ \.\-/\*/c
Simultaneous login limits work OK for users, who enter their usernames in low
register, but not for users, who try to mix upper and lower register symbols.
Their Access-Requests are accepted everywhere. Here is part of my trace4 log:
**
If usernames are entered in mixed case:
Fri Nov 17 11:56:46 2000: DEBUG: Radius::AuthSQL looks for match with xxx
^^^
Fri Nov 17 11:56:46 2000: DEBUG: Query is: select NASIDENTIFIER, NASPORT,
ACCTSESSIONID from RADONLINE where USERNAME='xxx'
^^^
Fri Nov 17 11:56:46 2000: DEBUG: Checking if user is still online:
TotalControlSNMP, Xxx, my_nas_ip_address, 3082, 201918932
^^^
Fri Nov 17 11:56:46 2000: DEBUG: Running command `/usr/bin/snmpget
my_nas_ip_address my_com_string
.iso.org.dod.internet.private.enterprises.429.4.10.1.1.18.4338`
Fri Nov 17 11:56:46 2000: NOTICE: Special Session for Xxx at
^^^
my_nas_ip_address:3082 has gone away
Fri Nov 17 11:56:46 2000: DEBUG: Special Deleting session for Xxx,
^^^
my_nas_ip_address, 3082
Fri Nov 17 11:56:46 2000: DEBUG: do query is: delete from RADONLINE where
USERNAME='xxx'
^^^
and NASIDENTIFIER='my_nas_ip_address' and NASPORT=ifnull("3082",0)
xxx = logins in lower case
Xxx = logins in mixed case
If usernames are entered in lower case the result is:
Fri Nov 17 11:56:32 2000: DEBUG: Running command `/usr/bin/snmpget
my_nas_ip_address my_com_string
.iso.org.dod.internet.private.enterprises.429.4.10.1.1.18.4338`
Fri Nov 17 11:56:33 2000: DEBUG: Radius::AuthSQL REJECT: Simultaneous-Use of
1 exceeded
Fri Nov 17 11:56:33 2000: INFO: Access rejected for xxx: Simultaneous-Use of
1 exceeded
My SessionDatabase part of radius.cfg is:
AddQuery insert delayed into RADONLINE ( \
USERNAME, \
REALM, \
NASIDENTIFIER, \
NASPORT, \
ACCTSESSIONID, \
TIME_STAMP, \
FRAMEDIPADDRESS, \
NASPORTTYPE, \
SERVICETYPE, \
CalledStationId, \
CallingStationId \
) values ( \
"%U" , \
"%R" , \
"%N" , \
ifnull("%{NAS-Port}",0), \
"%{Acct-Session-Id}", \
from_unixtime(%{Timestamp}), \
"%{Framed-IP-Address}", \
"%{NAS-Port-Type}", \
"%{Service-Type}", \
"%{Called-Station-Id}", \
"%{Calling-Station-Id}" \
)
DeleteQuery delete from RADONLINE where USERNAME="%U" and \
NASIDENTIFIER="%N" and NASPORT=ifnull("%{NAS-Port}",0
ClearNasQuery delete from RADONLINE where NASIDENTIFIER="%N"
CountQuery select NASIDENTIFIER, NASPORT, ACCTSESSIONID from RADONLINE \
where USERNAME="%U"
Where can I find the source of a problem, such straightforward users begin to
bother me :))
--
With regards,
Alexey A. Shavaldin [EMAIL PROTECTED]
System Administrator
of Kraft-S, JSC
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.