Sally Fetouh <[EMAIL PROTECTED]> wrote: > Thanks very much for your help! We found out that the environment was being > reset somehow by freeradius
That's called "security". Are you *sure* that you want shell scripts executed with all of the login environment variables set? The answer is almost always NO. More information given to a shell script means more possibilities for that information to be abused to attack your system. e.g. Sending User-Name with magic shell characters in it, in the hope that dumb scripts will use them as-is. > and managed to call a wrapper unix shell script (like you suggested) > that first sets the environment variables (in exactly the same way > as .profile) before calling the program. It all works nicely now! I would strongly recommend setting only the MINIMUM environment variables in the script. That will make things much safer. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
