Dinh Pham Cong wrote:
Hi all,
I noticed that my radiusd process exited silently this morning without
any notice before I must start it manually at Mon Dec 21 10:42:23 2009
as you can see in the below log messages. Besides, no crash is recorded
in /var/log/messages.
Try using 2.1.8 when
EasyHorpak.com i...@easyhorpak.com wrote:
[-- text/html, encoding quoted-printable, charset: TIS-620, 66 lines --]
[-- text/plain, encoding 7bit, charset: us-ascii, 2 lines --]
Please learn to how to use an email client
*sigh*
--
Alexander Clouter
.sigmonster says: Don't hit a man
Arran Cudbard-Bell a.cudbard-b...@sussex.ac.uk wrote:
the real answer is to get the vendors to sort their cheap shoddy kit out ;-)
Ahem *Vendor :P - - Sorry I have to do it or they beat me :(
dare I ask why you do not use you new 'formal' email address? ;)
Cheers
--
Alexander
Hi,
yep - but a user could just as easily log in with the user-name of
00:11:22:33:44:55 ;-)
Not when you say !EAP-Message too :)
...and how does that stop, lets just say for example, some user coming
along with 802.1X configured on their wired interface and logging it
with
I'm probably stupid as I never learn, but I'm going to take my chances
reporting succcess again
The v2.1.x branch from github up to and including commit
1d80707880c1bf94ad1e87be74221a6c7b4cb4c7 has now been running stable for
more than 5 days for me. All the previously reported problems seem
hi,
not sure about your mix of PEAP or EAP-TTLS iwht client certificate -
usually these systems use another form of user auth - such
as password, generic token card etc
what you need is the server certificate and you also need to ensure that the
CA that signed the servr cert is installed
Hi,
The v2.1.x branch from github up to and including commit
1d80707880c1bf94ad1e87be74221a6c7b4cb4c7 has now been running stable for
more than 5 days for me. All the previously reported problems seem to
be gone. So I'd say it makes a good 2.1.8 release for Christmas.
aye - there were some
Fernando Calvelo Vazquez wrote:
Hi folks:
I'm still trying to configure any authentication method that includes a
client certificate validation (PEAP, EAP-TTLS... ) behind my
window-vista supplicant software client, but unfortunately no successfully.
Attached to this mail is the output of
Alan Buxey wrote:
aye - there were some questions relating to getting some of the older
requested patches put into 2.1.8 too - has that been addressed?
Which patches?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Bjørn Mork wrote:
The v2.1.x branch from github up to and including commit
1d80707880c1bf94ad1e87be74221a6c7b4cb4c7 has now been running stable for
more than 5 days for me. All the previously reported problems seem to
be gone. So I'd say it makes a good 2.1.8 release for Christmas.
Hi,
Alan Buxey wrote:
aye - there were some questions relating to getting some of the older
requested patches put into 2.1.8 too - has that been addressed?
Which patches?
there were a couple cant remember exactly - i know one was '17' - the CHAP one.
I applied it locally to my pre
Alan DeKok al...@deployingradius.com wrote:
I've put a pre-release of version 2.1.8 on the web site:
http://git.freeradius.org/pre/
Please do some sanity checks, and see if it works for you.
This version is from the new v2.1.x branch, which is Version 2.1.7,
plus *only* bug fixes.
Just noticed:
commit 48674ba26a39620448723f5852aa30a899d515ac
Author: Alan T. DeKok al...@freeradius.org
Date: Mon Dec 21 12:07:08 2009 +0100
Add OpenSSL license exception
commit 5ed6809aad46a999db022d9a0be417178b93dff6
Author: Alan T. DeKok al...@freeradius.org
Date: Mon Dec 21
Bjørn Mork wrote:
Just noticed:
...
Add OpenSSL license exception
commit 5ed6809aad46a999db022d9a0be417178b93dff6
Author: Alan T. DeKok al...@freeradius.org
Date: Mon Dec 21 10:49:50 2009 +0100
Synced with upstream debian
Thanks!
More to come. :)
Alan DeKok.
-
List
Hi,
I'm having problems when using a virtual server.
When using the virtual_server I'm not getting the reply attributes set.
It may be a config thing, but I haven't been able to find where the
problem is from the documentation. And I can't understand why there
would be the difference.
I have 2
Alexander Clouter wrote:
Not quite on the pre-release but running
f691b0ec7d4c92919bdd4dc81e8a86b211c00832 from the stable branch I got
these after a 'hiccup' this morning on the network:
Program received signal SIGPIPE, Broken pipe.
[Switching to Thread 0x411b9950 (LWP 18045)]
Hi,
If I authenticate to TEST1/user
My response is only a successful auth.
If I authenticate to TEST2/user
My response is a successful auth WITH Attributes (in this case the
attribute I'm setting is
Cisco-AVPair = shell:priv-lvl=15
where are you setting that attribute? in the default
Hi,
Is it possible to have multiple Radius clients behind a router connect to a
distant Freeradius server (these clients would therefore have the same IP
address and be the same client in clients.conf)?
I've this and apparently it works, but could there be any problems in the
long run?
Thanks.
2009/12/21 Alan Buxey a.l.m.bu...@lboro.ac.uk:
Hi,
If I authenticate to TEST1/user
My response is only a successful auth.
If I authenticate to TEST2/user
My response is a successful auth WITH Attributes (in this case the
attribute I'm setting is
Cisco-AVPair = shell:priv-lvl=15
where
Alan DeKok al...@deployingradius.com wrote:
Then shortly after restarting it:
Program received signal SIGABRT, Aborted.
[Switching to Thread 0x4f492950 (LWP 23808)]
0x7f0060554ed5 in raise () from /lib/libc.so.6
(gdb) wher
#0 0x7f0060554ed5 in raise () from /lib/libc.so.6
Alexander Clouter wrote:
Want to put it down to a neutrino burst? :)
Been there. Done that.
http://www.sno.phy.queensu.ca/sno/papers/nim_paper_99.pdf
9th author, on the first page.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Not the default virtual server. The test virtual server
The flow is client - default virtual server acting as a proxy - test
virtual server
If the test virtual server is configured as a remote radius server
then things work great. If it's configured as a virtual server using
the
Fahd Kasri fahd.ka...@weblib.eu wrote:
Is it possible to have multiple Radius clients behind a router connect to a
distant Freeradius server (these clients would therefore have the same IP
address and be the same client in clients.conf)?
I've this and apparently it works, but could there be
That's what I thought. I tried the first solution (wanting to avoid the two
others), and apparently the configuration works. Just wanted to know if
there could be any problems with two or more clients using the exact some
configuration. Thanks for the info.
2009/12/21 Alexander Clouter
On Tue, Dec 15, 2009 at 09:03:33AM +0100, Alan DeKok wrote:
Axel Vogel wrote:
Please look at the configuration of virtual hosts in apache2.
The httpd.conf incudes only files with a well defined suffix
vhosts.d/*.conf
Sure. Send a patch.
I was thinking we should use the
Hi,
I was thinking we should use the mods-{available,enabled}, also mimicking
apache2 and sites-*. That way we can worry less about the admin editing and
leaving junk in one directory, when only the other one is supposed to be
clean. Something like this?
git mv raddb/modules
Fahd Kasri fahd.ka...@weblib.eu wrote:
That's what I thought. I tried the first solution (wanting to avoid the two
others), and apparently the configuration works. Just wanted to know if
there could be any problems with two or more clients using the exact some
configuration. Thanks for the
Josip Rodin wrote:
I was thinking we should use the mods-{available,enabled}, also mimicking
apache2 and sites-*. That way we can worry less about the admin editing and
leaving junk in one directory, when only the other one is supposed to be
clean. Something like this?
For 2.2.0, yes.
From: t...@kalik.net [mailto:t...@kalik.net]
Sent: Thursday, December 10, 2009 5:05 PM
To: FreeRadius users mailing list
Subject: Re: Trying to get tunneling to work
I am trying to set up freeradius to proxy requests 802.11 MSCHAPv2 to an
IAS
server. The IAS requests are authenticated by a
Hello,all!
Please help!I've to resolve this problem before tommorrow.
My task is to cofigure the freeradius using TTLS+EAP-MD5 to authenticate
users.I've found
much information about how to configure this type on Internet,but there are
some differences
between different vesions.
My
On Mon, Dec 21, 2009 at 03:39:24PM +, Alan Buxey wrote:
that makes the modules go into modules-available - but then you need
to create the modules-enabled directory and put links into there...
by default the server needs at least a handful of the modules to be present
for its default
anyi_9 wrote:
Please help!I've to resolve this problem before tommorrow.
My task is to cofigure the freeradius using TTLS+EAP-MD5 to
authenticate users.I've found
much information about how to configure this type on Internet,but there
are some differences
between different vesions.
Mike Bernhardt wrote:
ERROR: Failed to create a new socket for proxying requests.
ERROR: Failed inserting request into proxy hash.
Install 2.1.8 when it comes out. That should be tomorrow, or maybe
Wednesday.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
On 21/12/2009 09:15, Alan Buxey wrote:
Hi,
yep - but a user could just as easily log in with the user-name of
00:11:22:33:44:55 ;-)
Not when you say !EAP-Message too :)
...and how does that stop, lets just say for example, some user coming
along with 802.1X configured on
On 21/12/2009 09:05, Alexander Clouter wrote:
Arran Cudbard-Bell a.cudbard-b...@sussex.ac.uk wrote:
the real answer is to get the vendors to sort their cheap shoddy kit out ;-)
Ahem *Vendor :P - - Sorry I have to do it or they beat me :(
dare I ask why you do
I think we're getting too far into the detail and losing sight of the
problem I was trying to report initially.
I'd expect the only difference between the proxying to a remote server,
and proxying to a virtual server to be efficency / ports used, not
functionality, aka it's more efficnt to use
I think we're getting too far into the detail and losing sight of the
problem I was trying to report initially.
I'd expect the only difference between the proxying to a remote server,
and proxying to a virtual server to be efficency / ports used, not
functionality, aka it's more efficnt to use
Hi,
I think we're getting too far into the detail and losing sight of the
problem I was trying to report initially.
I'd expect the only difference between the proxying to a remote server,
and proxying to a virtual server to be efficency / ports used, not
functionality, aka it's more efficnt
38 matches
Mail list logo
