On Thu, 2008-12-04 at 18:07 +0100, Alan DeKok wrote:
> You can control this. Read radiusd.conf, and look for the
> documentation in the "listen" section.
What this means in a nutshell is that there is no direct way to tell
freeradius what source IP address to use when proxying (I'll be happy i
On Thu, 2008-11-20 at 12:38 -0800, Olavo wrote:
> Does anybody know about any Linux distro 64 bits that Freeradius will work
> for sure ?
I am using it on CentOS 5.2 x86_64. The freeradius package that comes
with CentOS 5 is old though, I compiled freeradius from source.
--Greg
-
List info/subs
On Wed, 2008-10-08 at 13:28 -0700, Olavo Dietrich wrote:
> Guys,
>
> let me make sure I understood your thoughts.
>
> I cannot use this freeradius-2.1.1-2.fc10 from
> http://koji.fedoraproject.org/koji/packageinfo?packageID=298 because
> my OS is not fedora , is that right ?
Correct. This one
On Wed, 2008-10-08 at 15:25 -0400, Madwifi Wireless wrote:
> Won't it be easier for you to just download the source, compile and install?
> You will be chasing lot's of rpm dependencies if you don't have all your
> packages install under RHEL.
Compiling from source will end up chasing an equivale
On Wed, 2008-09-17 at 11:44 -0600, Charlie B wrote:
> Thanks Allan,
>
> I appreciate it, unfortunately no update to openssl to see if that
> rectifies the issue, just implemented monit to ensure service is
> always running.
I've seen the same issue, with the server segfaulting. But it happens t
Is there any way to get the freeradius 2.1 server to log requests coming
from unknown clients? As far as I can tell, these are just silently
discarded. I have read through all the comments on the log section in
radiusd.conf but I don't see anything about this. Is there anywhere else
where the loggi
On Wed, 2008-09-10 at 08:20 +0100, [EMAIL PROTECTED] wrote:
> would you prefer to have a nightly
> tarball of the files to be able to perform this function
> rather than having to be familiar with a revision control
> system which might not be present for your chosen platform?
All other things
On Tue, 2008-09-09 at 22:48 +0100, [EMAIL PROTECTED] wrote:
> a nightly tarball, i guess, would be what you would
> prefer for this sort of action?
What I generally prefer is to wait for a stable release. For my own
needs, I could well have done that this time too. But in this case, Alan
asked me
On Tue, 2008-09-09 at 21:56 +0100, [EMAIL PROTECTED] wrote:
> but you chose to use the system stuff in the configure stage
> rather than the supplied version, yes?
Much of the time, by the time I get around to wanting to build
freeradius, it's been months since the server was installed, so I don'
On Tue, 2008-09-09 at 21:57 +0100, [EMAIL PROTECTED] wrote:
>
> congrats! - GIT is far nicer than some of the older methods of
> source retrieval.
I've heard that, but I didn't really get far enough to tell. I had to go
through the process of figuring out which packages were needed, that
they a
On Tue, 2008-09-09 at 15:17 -0400, John Dennis wrote:
>
> I'm inclined to think for those people who wish to build from upstream
> they are better off using the autotools configure script included in
> the freeradius source distribution and not use rpm mechanisms
Yes, but there are still packag
On Tue, 2008-09-09 at 15:24 -0400, John Dennis wrote:
> Wildcards passed to commands must always be quoted or escaped
Well, no, not always any more. If I did something like "cd /root" first,
then the yum commands work just fine. It's a bash feature that if the
wildcard doesn't actually match anyt
I tried to use a non-default prefix, and it craps out on "make install"
because one of the sql-related files refuses to install in a directory
name that didn't end with /usr/local/lib . I was able to work around
this by using a --prefix like "/local/freeradius-git/usr/local" instead
of just "/loca
On Tue, 2008-09-09 at 19:43 +0100, John Horne wrote:
> Does something a bit more generic like 'yum list *td*' show you a list
> of installed and available packages? It works for me on CentOS 5.2,
AAAUGH! I got it figured out. I was in the freeradius-server directory
when I tried this, so it turn
On Tue, 2008-09-09 at 19:50 +0200, Alan DeKok wrote:
> Please checkout and build git.freeradius.org.
OK, I got this done. It configures and makes on my system (CentOS
release 5.2 (Final) -- x86_64) with no problems. Now on to some fun with
dynamic clients.
--Greg
-
List info/subscribe/unsu
On Tue, 2008-09-09 at 18:54 +0100, [EMAIL PROTECTED] wrote:
> generally, its blindingly obvious when you see something like
>
> Error - libfoo.h missing
>
> you think, hmmm, i dont have an include.
But if libfoo.h actually exists in the source tree (as in the case of
ltdl.h), then it's not so b
On Tue, 2008-09-09 at 19:50 +0200, Alan DeKok wrote:
> Please checkout and build git.freeradius.org.
If I get time to do this before 2.1.1 comes out, I'll give it a shot,
but there are no git packages for CentOS and I've never used it before,
so I'll have to install git on my Fedora 9 worksta
On Tue, 2008-09-09 at 16:53 +0100, [EMAIL PROTECTED] wrote:
> yep, you havent got all the required development packages installed.
>
> libtool-ltdl-devel
> libtool-ltdl
Thanks, that was it. However, I discovered what I think is a bug in yum
in the process. I tried "yum list *ltdl*" and this fail
I am running on CentOS 5.2 on an x86_64 architecture. I note a previous
report for a similar system here on the list, but this is not the same
error. That one was an error compiling radmin, this is an error
compiling the server:
gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOUR
On Fri, 2008-08-22 at 22:48 +0200, Alan DeKok wrote:
> See "man rlm_passwd" for an example.
Thank you. That was the pointer I needed.
> No... where do *you* want to store the information about which user
> belongs in which group.
Anywhere that works. In other words, I'll write scripts to modi
On Fri, 2008-08-22 at 20:25 +0200, Alan DeKok wrote:
> Greg Woods wrote:
> I have to find a
> > way to specify in the front end proxy on a per-user basis which back end
> > server should be used.
>
> Use groups, or *something* else.
I can't find any informa
We have a freeradius instance that talks to the world, and proxies
requests to a back end server that does token authentication via the
"otp" module. This all works fine. What we need is something we can do
when a user forgets or loses their card. We thought to use S/key for
this. To that end, I ha
On Tue, 2008-08-05 at 18:17 +0100, [EMAIL PROTECTED] wrote:
> your host is firewalled and therefore FR doesnt see the packet
> at all?
>
Also, if the server host is multihomed, then the response packet may be
coming from a different source IP than the original request was sent to,
in which case
On Tue, 2008-08-05 at 16:40 +0200, Alan DeKok wrote:
> I have no idea why vendors don't supply static libraries. It's not
> like disk space is expensive these days.
Many of them do supply static libraries, but they are part of a
different package. At least on Red Hat-based systems, if you have
On Wed, 2008-07-02 at 12:33 -0600, Greg Woods wrote:
> On Wed, 2008-07-02 at 17:15 +0100, Ivan Kalik wrote:
>
> > How sure are you that your auth script works?
>
> I'm not using a script. Under 1.1.7 at least, when "otp" is invoked, it
> communicates with ot
On Wed, 2008-07-02 at 17:15 +0100, Ivan Kalik wrote:
> How sure are you that your auth script works?
I'm not using a script. Under 1.1.7 at least, when "otp" is invoked, it
communicates with otpd using a socket. This is known as the "rendezvous
point" and is specified in otpd.conf as "otpd_rp
=
On Wed, 2008-07-02 at 09:23 +0100, Ivan Kalik wrote:
> Try adding it to inner-tunnel as well (you won't be using it there, but
> it won't hurt). It looks like inner-tunnel is loaded before default in
> your configuration (my 2.0.5 loads default first).
Thank you! That was it! First major hurdle ov
On Tue, 2008-07-01 at 23:57 +0100, Ivan Kalik wrote:
> Do you have that Auth-Type defined in the authenticate section?
That question is a little less obvious to answer under 2.0.5 than it was
under 1.1.7 .
In my /etc/raddb/sites-enabled/default file, I did add "otp" to both the
authorize {} and
I am trying to migrate from freeradius 1.1.7 to freeradius 2.0.5 and I
cannot get the OTP module to work. Basically it instantiates, but when I
specify "Auth-Type = OTP" in a users file entry, it complains that this
is not a valid value for that attribute. This worked fine under 1.1.7 .
I have been
I am still trying to get the rlm_x99_token to work. I am now testing
with a SecureNet Key token (A "generic" in the x99passwd file). This
token I know how to manually program, so I can guarantee that I know the
DES key and have entered it properly in the x99passwd file.
The user interface is, I en
If I get yelled at for asking this here, so be it; it will be just one
more stumbling block in a long research project.
What I want to do, in a nutshell, is use the rlm_x99_token module to
authenticate users with Cryptocards. But everything I've tried so far
comes down to needing to know the DES k
31 matches
Mail list logo
