Can't use that as an argument, mickeysoft
strongly recommends to leave it disabled, and i'm not the windows admin.
Stieven Struyf
M.I.S. Division - System Operations
Komatsu Europe International NV
Mechelsesteenweg 586
B-1800 Vilvoorde
[EMAIL PROTECTED]
Tel. +32 (0)2 2552551
Alan DeKok
On Tue, Oct 24, 2006 at 07:58:17PM -0400, Alan DeKok wrote:
B Thompson [EMAIL PROTECTED] wrote:
Looking at the timestamps it would seem that this is the packet which
caused the error even though tcpdump shows no Tunnel-Password
attribute was present. So, something is definitely odd here. Is
B Thompson wrote:
I cannot continue to use 1.1.3 as we are regularly using HUP to re-read
the configs and there appears to be a problem with this in versions 1.0.1.
Yes, there does.
I haven't had time to gather the relevant debugging info (we just
restart instead of HUP the server as a
On Wed, Oct 25, 2006 at 10:57:55AM +0100, Phil Mayers wrote:
B Thompson wrote:
I cannot continue to use 1.1.3 as we are regularly using HUP to re-read
the configs and there appears to be a problem with this in versions
1.0.1.
Yes, there does.
I haven't had time to gather the
Alan DeKok schrieb:
Norbert Wegener [EMAIL PROTECTED] wrote:
In a certain context I want to accept all incoming requests.
Ok...
mysql select * from radcheck where UserName='0009';
+-+--+--++--+-+
| id
Hi all,
This is probably a bit newbie-ish, but I thought I'd try anyway. We are
trying to authenticate users based on the username/password given AND the
vlan they are authenticating from. Is this possible?
A quick overview of our scenario is as follows:
- Wireless service offering an SSID/VLAN
I'm still struggling
with my server throwing
Error: TLS Alert
write:fatal:bad record macError: TLS_accept:error in
SSLv3 read certificate verify AError: rlm_eap: SSL error error:1408F455:SSL
routines:SSL3_GET_RECORD:decryption failed or bad record macError:
rlm_eap_tls: SSL_read failed in
We are trying to authenticate users based on the username/password
given
AND the vlan they are authenticating from. Is this possible?
Yes, if you can pass the information to freeradius. We currently do
this by having our APs pass the SSID to which the user is connecting.
It sounds like you
Norbert Wegener [EMAIL PROTECTED] wrote:
So how could I assign a Hint using MySQL and use it later? Is it
possible at all the way I would like to use it?
It may work, I just haven't checked.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
King, Michael [EMAIL PROTECTED] wrote:
I thought the errors (SSL error error::lib(0):func(0):reason(0))
only started printing in version 1.1.3 (It was something to do with
sending it to the log instead of stdout)
I think a few SSL errors may have been printed out earlier, but
check
-Original Message-
I think a few SSL errors may have been printed out earlier,
but check that the 1.1.3 rlm_* libraries aren't still on your system.
The Libraries were still there. Eradicating them helped. :-)
-
List info/subscribe/unsubscribe? See
Ok, Well that might be what I'm looking for. How do you get Radius to check
for username,password and vlan/ssid? Can you do a quick cut/paste job of
what I need to place in my conf files?
Also what AP's are you using that allow you to get them to send the
ssid/vlan to Radius? Just curious
Ok, Well that might be what I'm looking for. How do you get
Radius to check for username,password and vlan/ssid?
Well, as you might expect, that depends upon what data store
you plan to go against (unix passwd file, freeradius users file,
LDAP, etc.) You mentioned LDAP last time so I'll give
Thanks Stefan that worked!
Now I have one more problem. We give our user a time limit on how much
time they can be online for and that seems to be a sticking point. I
didn't get an error when I was testing because I had unlimited time and
did not have that field in the database, but when I
Would the fact that the libraries were causing this issue help narrow it
down?
You had mentioned in the past that the TLS threading code should be
looked at. Would this be part of the library?
-Original Message-
From:
[EMAIL PROTECTED]
g
[mailto:[EMAIL PROTECTED]
adius.org] On
Hello,
Whenever I run radiusd alone, without the -X this error occurs in
the first authentication request:
Error: Assertion failed in listen.c, line 620
This line indicate the proxy part.
Running CVS radiusd -X generates no error at all.
Any clues?
Thanks.
-
List
King, Michael [EMAIL PROTECTED] wrote:
Would the fact that the libraries were causing this issue help narrow it
down?
Maybe.
You had mentioned in the past that the TLS threading code should be
looked at. Would this be part of the library?
No. See src/main/threads.c in the latest CVS.
Guilherme Franco [EMAIL PROTECTED] wrote:
Whenever I run radiusd alone, without the -X this error occurs in
the first authentication request:
Error: Assertion failed in listen.c, line 620
Is this a recent version of CVS? I thought I had fixed that weeks ago...
Alan DeKok.
--
Hi all, found that badusers.sql and
usersinfo.sql wont work as-is with mysql = 4.1 because
it did not support DEFAULT statements on auto_increment fields;
verified that without DEFAULT the scripts runs ok.
I am new on the list, found on the archives
that it was reported before, but would like to
Hi,I have just installed Freeradius onto a dedicated hosted server I have recently started to use.The hosting company have FreeBSD 4.1.1 installed and as such, things are a little tricky to get running out of the box!
I have had to add an include to sys/types.h into
Oh sorry, it's not the latest one because theres only cistron in the CVS page.
I can't download freeradius cvs then.
Please check the page: ftp://ftp.freeradius.org/pub/radius/CVS-snapshots/
Thanks.
On 10/25/06, Alan DeKok [EMAIL PROTECTED] wrote:
Guilherme Franco [EMAIL PROTECTED] wrote:
Guilherme Franco [EMAIL PROTECTED] wrote:
Oh sorry, it's not the latest one because theres only cistron in the CVS page.
I can't download freeradius cvs then.
You can use CVS to check out the latest version.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
Yes, indeed, thanks. I just wanted to notify about the dead link as
well as the browse cvs tree:
http://www.freeradius.org/cgi-bin/cvsweb.cgi/radiusd/
By now, I'll use plain cvs to download it.
Thank you.
On 10/25/06, Alan DeKok [EMAIL PROTECTED] wrote:
Guilherme Franco [EMAIL PROTECTED]
Hello,
In sqlippool.conf I've instantiated:
sqlippool DYNAMIC{
...
allocate-find = SELECT framedipaddress FROM ${ippool_table} \
WHERE pool_name = '%{check:Pool-Name}' AND expiry_time 'now'::timestamp(0) \
ORDER BY RANDOM() \
LIMIT 1 \
FOR UPDATE
...
}
sqlippool STATIC{
...
allocate-find
At least on RHEL4 with glibc 2.3.4-2.13, a double-free in the above file
causes a crash on HUP in some circumstances. I've confirmed that
removing this fixes the issue.
459
460 free(conf-check_cert_cn);
461 free(conf-check_cert_cn);
462
B Thompson wrote:
On Wed, Oct 25, 2006 at 10:57:55AM +0100, Phil Mayers wrote:
B Thompson wrote:
I cannot continue to use 1.1.3 as we are regularly using HUP to re-read
the configs and there appears to be a problem with this in versions
1.0.1.
Yes, there does.
I haven't had time to
26 matches
Mail list logo