IDG has detected a virus during a real-time scan of the email traffic.
Date: 10/28/2002 6:0:22
Virus: WORM_KLEZ.H
File:FOOTER
From: freeradius-users [EMAIL PROTECTED]
To: Newsbox;
Action: Uncleanable, Quarantined;
Scanned by ScanMail for Lotus Notes 2.5
with
Hi:
Does Cisco's Aironet 350 series AP run with Windows 2000 Radius server?
Regards,
Nikhil.Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site
Hello,
i use freeradius 0.7.1 as Proxy-RADIUS.
When i start the deamon, it made a nslookup for every entry
in clients.conf file. If the look up fails the daemon don't
start. How can i stop this behaviour? Because when the daemon
crash (may never be) and i want a automatic restart maybe it
failed
Dear Helmut Tröbs,
Good practice is to place all records for crytical hosts in /etc/hosts.
In addition to failover it will also give you protection against DNS
spoofing attack.
--Monday, October 28, 2002, 2:18:28 PM, you wrote to [EMAIL PROTECTED]:
HT Hello,
HT i use freeradius 0.7.1 as
Greetings,
Can someone point show me how I need to setup FreeRadius 0.7 w/ MySQL so
that there is no simultaneous use? I.E. I only want users to be able to
connect once with their account. I've tried looking many place for
documentation, and short of the O'Reilly Book, I am unable to find
Dear Joshua,
you are not alone about this ... I am trying to get the same ...
I can not get any advise yet ..
:-)
Regards,
Jorge.
JC Greetings,
JC Can someone point show me how I need to setup FreeRadius 0.7 w/ MySQL so
JC that there is no simultaneous use? I.E. I only want users to be
If you make few DNS changes for your radius clients, you could put the IP
addresses instead of host names in your clients.conf file.
Kevin
On Monday 28 October 2002 06:18, Helmut Tröbs wrote:
Hello,
i use freeradius 0.7.1 as Proxy-RADIUS.
When i start the deamon, it made a nslookup for
Have you guys tried here:
http://www.freeradius.org/radiusd/doc/Simultaneous-Use
Gene Parks
VIP Direct
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Greetings,
I am setting up a wireless network using FreeRadius and
ORINOCO AP-2000 access points. I am trying to setup EAP/TLS for auth and
encryption. At this point, I have the supplicant successfully connecting
to the AP. FreeRadius then authenticates the user and reports an Access
My apologies for the HTML, Outlook as apparently decided to ignore my
preference settings...
Raymond McKay
IT Manager / Network Administrator
Funnybone Interactive
Vivendi Universal Games
-Original Message-
From: McKay, Raymond [mailto:RMcKay;vugames.com]
Sent: Monday, October 28, 2002
Thanks for the answers!
If you make few DNS changes for your radius clients, you could put the IP
addresses instead of host names in your clients.conf file.
Kevin
Good practice is to place all records for crytical hosts in /etc/hosts.
In addition to failover it will also give you
McKay, Raymond [EMAIL PROTECTED] wrote:
I am setting up a wireless network using FreeRadius and ORINOCO AP-2000
access points. I am trying to setup EAP/TLS for auth and encryption.
See the EAPTLS document in:
http://www.freeradius.org/doc/
Alan DeKok.
-
List
=?ISO-8859-1?Q?Helmut_Tr=F6bs?= [EMAIL PROTECTED] wrote:
This are good ideas for a work-arround, but not the solution of the
problem. The simplest way is to make a switch which turn the DNS-check
on and off.
If you had bothered reading my previous response to your multiple
postings, you
Nikhil Chauhan [EMAIL PROTECTED] wrote:
Does Cisco's Aironet 350 series AP run with Windows 2000 Radius server?
Who cares?
And why are you posting a question about a commercial RADIUS server
to the FreeRADIUS list?
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Joshua Corbin [EMAIL PROTECTED] wrote:
Can someone point show me how I need to setup FreeRadius 0.7 w/ MySQL so
that there is no simultaneous use?
I would suggest doing that in three steps. Most people try to
configure 2-4 things at the same time, and then never get it working.
Step 1:
[EMAIL PROTECTED] wrote:
1. When I'm running with -x (process does not fork to background)
and send TERM to main process, modules are cleaned-up, I see
...
start_servers times, main process does not exit and on ps
I see main process with one defunc child.
2. When running in
I know it's been mentioned before that SecurIDs could be used as an
external (to freeradius) authenticator. Is anyone out there currently
running this kind of config? (I'd rather not reinvent the wheel if
someone has gone through the pain.)
Thanks!
Vincent Giovannone
Network Infrastructure
Hello!
I use FreeRADIUS of version 0.7.1 with MySQL authorization and accounting on
ALT Linux (kernel 2.4.7).
All was Ok until I try to use Exec-Program-Wait A/V pair in users file.
radiusd -X displays something like this:
-- skipped --
auth: type Local
auth: user supplied User-Password matches
Hello,
I am looking how to configure freeradius to use different accounting sql
modules/queries per NAS.
basically i want to put something like this in my acct_users file :
DEFAULT NAS-IP-Address == 10.0.0.1, Acct-Status-Type == Stop,
Auth-Type := SQL1
DEFAULT NAS-IP-Address ==
Alexandr Skarbo [EMAIL PROTECTED] wrote:
I use FreeRADIUS of version 0.7.1 with MySQL authorization and accounting on
ALT Linux (kernel 2.4.7).
All was Ok until I try to use Exec-Program-Wait A/V pair in users file.
radiusd -X displays something like this:
...
Upgrade to the latest CVS
Igor de Rooij [EMAIL PROTECTED] wrote:
I am looking how to configure freeradius to use different accounting sql
modules/queries per NAS.
basically i want to put something like this in my acct_users file :
DEFAULT NAS-IP-Address == 10.0.0.1, Acct-Status-Type == Stop,
Auth-Type :=
SecurID has it's own radius server built in. You can proxy to it or
just point your clients straight at it.
Gene Parks
VIP Direct
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Why do you need to do this. Why not write all the data to the same table,
and alter your 'output' queries to pull out data on a per-NAS basis?
You might be able to rewrite the insert statement to insert into a different
table.
If you need it to go to two different databases, then you may want
Unfortunately, I've actually looked at the radius server built in, and
it's _really_ scary. (I'd _almost_ rather run no authentication than that
radius server!)
It's very similar to their support of LDAP They import the whole
ldap tree once, and wow! they support LDAP! No, not really...
Yes Gene, I did, but, or I have done something wrong or ... don;t
know.
I will try to upgrade freeradius to 0.7 (I am using 0.6.x) and follow
what Alan DeKok advise in his messege here.
I wanted to get this feature work, using only mysql (no files), my
be this is my mistake.
Thank
hi
I am setting up a wireless network using FreeRadius and ORINOCO AP-2000
access points. I am trying to setup EAP/TLS for auth and encryption.
talking about encryption: are you sure that Orinoco AP-2000 supports the
dynamic WEP key generation? the RADIUS-attributes needed to do so (EAP
TLS
Thank you for your quick response. As far as I can tell, I have followed
the XP EAP/TLS howto as well as Adam's HOWTO on the server side setup to the
letter (minus the config file typos etc) Everything at this point says it
should be working. The radius log seems to match what was outputted in
From: McKay, Raymond [mailto:RMcKay;vugames.com]
Sent: den 28 oktober 2002 16:32
To: '[EMAIL PROTECTED]'
Subject: RE: EAP-TLS + ORINOCO AP-2000 + Dynamic WEP (Windows
XP Supplican t)
I am using FreeRadius 0.7.1
For this to work you need our addition to the EAP-TLS module for generating
Heya!
I used freeradius 0.7.1 and postgresql 7.1.3, freebsd 4.4-STABLE
Radius began to hang up (if started with -X) or just core dump.
Mon Oct 28 19:40:01 2002 : Error: WARNING: Unresponsive child (id
135801856) for request 29
Mon Oct 28 19:40:06 2002 : Error: WARNING: Unresponsive child (id
Lars, one more quick question for you. Adam's EAP/TLS howto specified a
requirement to build two versions of openssl one stable, the other a
development snapshot for the rlm_eap module. Is that still the case. If so
or if not, what version of openSSL should I use to compile?
Thanks
Raymond
Hi all,
I'm on freeradius-0.7.1. I want to add the following VSA's to the
accounting_start_query?
---SNIP---
Cisco-Service-Info = Naccess_5
Cisco-Service-Info = Utest
Cisco-Service-Info = TP
---SNIP---
They don't have a unique name.
The separation is done with the first letter of the
From: McKay, Raymond
Sent: Monday, October 28, 2002 6:53 PM
Lars, one more quick question for you. Adam's EAP/TLS howto
specified a
requirement to build two versions of openssl one stable, the other a
development snapshot for the rlm_eap module. Is that still
the case. If so
or if
I think Adam's guide is a bit unclear about OpenSSL requirements. An
openssl from the 0.9.7 series (currently in beta) or the development
series is needed for the EAP/TLS support in freeradius. As far as I know
the same openssl version can be used for the rest of your system too
I am trying to get a Cisco VPN NAS Device to authenticate from
freeradius and I am getting a reject back no matter what I have tried
using known good username/passwords.
Our radius server uses LDAP for auth. I have so far found that it apears
that the Cisco VPN box is communicating with radius
Collin Smith [EMAIL PROTECTED] wrote:
I am trying to get a Cisco VPN NAS Device to authenticate from
freeradius and I am getting a reject back no matter what I have tried
using known good username/passwords.
The debug log should tell you WHY it's rejecting.
... Dial up has
no troubles
Sorry, I should have been more clear. The error I listed was what was
recieved back on the VPN box.
Actually I looked at the log for freeradius and I recieved the following
which was strange since it is indicating the hostname of the VPN box
instead of the LDAP username.
Wed Oct 23 12:52:24
hi
Ok at risk of sounding dense here, I should be able to keep my install of
openssl0.9.6g installed normally, install openssl0.9.7-beta in
/usr/local/openssl, and configure freeradius by
1) ./configure --with-raddb=/etc (for my config)
2) editing
Collin Smith [EMAIL PROTECTED] wrote:
Sorry, I should have been more clear. The error I listed was what was
recieved back on the VPN box.
OK...
Actually I looked at the log for freeradius and I recieved the following
which was strange since it is indicating the hostname of the VPN box
[EMAIL PROTECTED] wrote:
I'm not sure that there is no resources(memory) leak after such
termination, despite of using detached threads.
When a process exits, it can't leak memory. The kernel cleans up
after the process.
So I think that child processes (threads) must be terminated either
I want to query different databases (LDAP) depending on which NAS the
connection comes from. Is this possible?
More specifically, I'd like to add a realm to usernames from a
particular NAS and then run the query in the same database.
(reference previous post,
eManager Notification *
The following mail was blocked since it contains sensitive content.
Source mailbox: [EMAIL PROTECTED]
Destination mailbox(es): [EMAIL PROTECTED]
Rule/Policy: Profanity
Action: Quarantine to C:\Program
You sir are a saint! That finally worked like a charm. I think I am going
to write up some quick, easy and clear documentation on this that covers all
these little undocumented installation requirements. Thanks again for
your help
Raymond McKay
IT Manager / Network Administrator
Funnybone
I would suggest doing that in three steps. Most people try to
configure 2-4 things at the same time, and then never get it working.
Step 1: get MySQL working to your satisfaction.
Have that working, I even have my op field set to := instead of null
(I've been following the list for a while
-Original Message-
From: [EMAIL PROTECTED]
[mailto:freeradius-users-admin;lists.cistron.nl]On Behalf Of Joshua
Corbin
Sent: Monday, October 28, 2002 7:33 PM
To: FreeRadius List
Subject: Re: Non-Simultaneous Usage
I would suggest doing that in three steps. Most people try
Hello! I'm kinda new in this list and haven't used
Freeradius before. Do you guys know how can I
authenticate MD5 passwords on a MSSQL DB or MySQL DB?
Thanks in advance guys
=
Joseph Ross Lee
System Developer
mobile +639202562248
-
List info/subscribe/unsubscribe? See
Hello! I'm new to this list and I haven't used
Freeradius before. I was able to setup Freeradius on
my Redhat 8.0 box and I'm trying to make it connect to
MS SQL 2000 server and the passwords are encrypted
using MD5. Does anybody here have any info on how to
do this? I tried compiling it with
All --
I have freeradius 0.71 working with the sql module for authentication and
accounting, but I'm having trouble getting the sqlcounter module going.
I have read all the docs I can find. I have 'sqlcounter dailycounter'
and 'sqlcounter monthlycounter' sections defined in my radiusd.conf
47 matches
Mail list logo
