Hi,
> >if (Service-Type == "NAS-Prompt-User") {
> > if (NAS-IP-Address =~ /^172\.17\.107\./) {
> > if (User-Name =~ /^wisms\-testing/) {
> > update control {
> > Auth-Type := Accept
> > }
ouch do you realise how dangerous that is? there
should be no need to send an access accept packet back
to these probes - a reject should suffice - and that would stop
an end user subverting your system by simply using
that UserName (if they are using wpa_supplicant they could
add that NAS-Prompt-User attribute)
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
