Hello Robin -
On Thu, 10 Feb 2000, Robin Gruyters wrote:
Hi,
Because we get garbage usernames, i've used the handler bit in the config file
(see below):
Handler User-Name = /\\x/
AuthBy FILE
Filename %D/reject-users
/AuthBy
/Handler
Handler
AuthByPolicy ContinueWhileIgnore
RewriteUsername tr/A-Z/a-z/
AuthBy LDAP2
Hosthostname
AuthDN cn=radius,o=WISH, c=NL
BaseDN o=WISH, c=NL
AuthPasswordencrypted
UsernameAttruid
PasswordAttruserPassword
AddToReply Service-Type = Framed-User,\
Framed-Protocol = PPP,\
Framed-IP-Address = 255.255.255.254,\
Framed-MTU = 1500,\
Primary-DNS-Server= 212.123.129.68, \
Secondary-DNS-Server= 212.123.128.16
/AuthBy
AuthBy LDAP2
Hosthostname
AuthDN cn=radius,o=WISH, c=NL
BaseDN o=WISH, c=NL
AuthPasswordencrypted
UsernameAttruid
PasswordAttruserPassword
AddToReply Service-Type = Framed-User,\
Framed-Protocol = PPP,\
Framed-IP-Address = 255.255.255.254,\
Framed-MTU = 1500,\
Primary-DNS-Server= 212.123.129.68, \
Secondary-DNS-Server= 212.123.128.16
/AuthBy
/Handler
Only the first handler doesn't work realy. Here is a dump:
*** Received from 195.7.137.163 port 1812
Code: Access-Request
Identifier: 21
Authentic: 4t18026252168t177148196f\10,20611
Attributes:
User-Name = "1631381881431592352421595176177
o177X22721913015725322324422681561706
2178%228?201141W23728135NssSB135165w147iv138$244z140O255134L152150247209_191224112
160.140239255197241168190147J203223216254239205255229227155201:210154247T2282022
1[218185/(4168|252255|234139P23015011134231239255230131161728y30,$210~230254237n
235i16826X252239255K29176135K139185N2031626cx144%254206254188225iT208"
User-Password = 210;=220139O164a|203176227AT172432m
1452051541371372Z15515730YN11B281
97173320421SJ160O221424{)190L173223)9y152199Kq204234184179)u220K156d*18v144150148
"192172152`3163167205130177133224180229715254147
NAS-IP-Address = 195.7.137.163
NAS-Port = 1299
Acct-Session-Id = "85066624"
Interface-Index = 2555
Supports-Tags = 0
Service-Type = Login
Chassis-Call-Slot = 6
Chassis-Call-Span = 1
Chassis-Call-Channel = 19
Connect-Speed = NONE
Calling-Station-Id = "0478631728"
Called-Station-Id = ""
NAS-Port-Type = Async
Wed Feb 9 18:22:39 2000: DEBUG: Check if Handler User-Name = /\\x/ should be
used to handle this request
Wed Feb 9 18:22:39 2000: DEBUG: Check if Handler should be used to handle this
request
Wed Feb 9 18:22:39 2000: DEBUG: Handling request with Handler ''
Wed Feb 9 18:22:39 2000: DEBUG: Rewrote user name to
\xa3\x8a\xbc\x8f\x9f\xeb\xf2\x9f5\xb0\xb1 o\xb1x\xe3\xdb\x82\x9d\xfd\xdf\xf4\x
e28\x9c\xaa6^B\xb2%\xe4?\xc9\x8dw\xed^\\x87nsssb\x87\xa5w\x93iv\x8a$\xf4z\x8co\xff\x86l\x98\x96\xf7\xd1_^S^L\xf1^L\xa0.\x8c\xef\x
ff\xc5\xf1\xa8\xbe\x93j\xcb\xdf\xd8\xfe\xef\xcd\xff\xe5\xe3\x9b\xc9:\xd2\x9a\xf7t\xe4^T\xdd[\xda\xb9/(^D\xa8|\xfc\xff|\xea\x8bp\xe6\
x96^K\x86\xe7\xef\xff\xe6\x83\xa1^G^\y^^,$\xd2~\xe6\xfe\xedn\xebi\xa8^Zx\xfc\xef\xffk^]\xb0\x87k\x8b\xb9n\xcb\xa26cx\x90%\xfe\xce\xf
e\xbc\xe1it\xd0
Wed Feb 9 18:22:39 2000: DEBUG: Deleting session for
\xa3\x8a\xbc\x8f\x9f\xeb\xf2\x9f5\xb0\xb1 o\xb1X\xe3\xdb\x82\x9d\xfd\xdf\xf4\
xe28\x9c\xaa6^B\xb2%\xe4?\xc9\x8dW\xed^\\x87NssSB\x87\xa5w\x93iv\x8a$\xf4z\x8cO\xff\x86L\x98\x96\xf7\xd1_^S^L\xf1^L\xa0.\x8c\xef\
xff\xc5\xf1\xa8\xbe\x93J\xcb\xdf\xd8\xfe\xef\xcd\xff\xe5\xe3\x9b\xc9:\xd2\x9a\xf7T\xe4^T\xdd[\xda\xb9/(^D\xa8|\xfc\xff|\xea\x8bP\xe6
\x96^K\x86\xe7\xef\xff\xe6\x83\xa1^G^\y^^,$\xd2~\xe6\xfe\xedn\xebi\xa8^ZX\xfc\xef\xffK^]\xb0\x87K\x8b\xb9N\xcb\xa26cx\x90%\xfe\xce\x
fe\xbc\xe1iT\xd0, 195.7.137.163, 1299
Wed Feb 9 18:22:39 2000: DEBUG: Handling with Radius::AuthLDAP2
Wed Feb 9 18:22:39 2000: DEBUG: Connecting to lrad.inside.servers, port 389
Wed Feb 9 18:25:11 2000: DEBUG: Reading users file /etc/raddb/reject-users
Wed Feb 9 18:25:12 2000: INFO: Server started
It says that it is reading the /etc/raddb/reject-users, but also you see that he
tries to contact the ldap server..
Why?
Owya, this is what the reject-users file contains:
DEFAULT Auth-Type = Reject
This actually looks like Radiator is restarting at 18:25:11 - why is that? Did
you send it a kill signal? or are you using