I've compiled and install 0.7.1 under Compaq Tru64 5.1 and under Redhat Linux
7.3. I have 902 users configured in the users file. The server runs and
authenticates (checked with radtest from another system) for all but 62 of
the users. The odd thing is the users that fail all have a username that
begins with S, C, or P. No other users fail and all of the users with [SCP]
as the first char fail. Running the server with '-xxyz -l stdout' and
trying 10 "bad" users gives the logfile attached. It looks like, for
whatever reason, the server is dropping S, C, or P before trying to do a
match. In other words, SMITHP1 becomes MITHP1 before the lookup is done.
Any suggestions?
--
Dan
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file: /usr/local/etc/raddb/sql.conf
main: prefix = "/usr/local"
main: localstatedir = "/usr/local/var"
main: logdir = "/usr/local/var/log/radius"
main: libdir = "/usr/local/lib"
main: radacctdir = "/usr/local/var/log/radius/radacct"
main: hostname_lookups = no
read_config_files: reading dictionary
read_config_files: reading clients
read_config_files: reading realms
read_config_files: reading naslist
main: max_request_time = 30
main: cleanup_delay = 5
main: max_requests = 1024
main: delete_blocked_requests = 0
main: port = 0
main: allow_core_dumps = no
main: log_stripped_names = no
main: log_auth = yes
main: log_auth_badpass = no
main: log_auth_goodpass = no
main: pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
main: user = "(null)"
main: group = "(null)"
main: usercollide = no
main: lower_user = "no"
main: lower_pass = "no"
main: nospace_user = "no"
main: nospace_pass = "no"
main: proxy_requests = yes
proxy: retry_delay = 5
proxy: retry_count = 3
proxy: synchronous = no
proxy: default_fallback = yes
proxy: dead_time = 120
security: max_attributes = 200
security: reject_delay = 1
main: debug_level = 0
read_config_files: entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded System
unix: cache = yes
unix: passwd = "/etc/passwd"
unix: shadow = "/etc/shadow"
unix: group = "/etc/group"
unix: radwtmp = "/usr/local/var/log/radius/radwtmp"
unix: usegroup = no
unix: cache_reload = 600
HASH: Reinitializing hash structures and lists for caching...
HASH: user root found in hashtable bucket 11726
HASH: user bin found in hashtable bucket 86651
HASH: user daemon found in hashtable bucket 11668
HASH: user adm found in hashtable bucket 26466
HASH: user lp found in hashtable bucket 54068
HASH: user sync found in hashtable bucket 42895
HASH: user shutdown found in hashtable bucket 71746
HASH: user halt found in hashtable bucket 7481
HASH: user mail found in hashtable bucket 79471
HASH: user news found in hashtable bucket 5375
HASH: user uucp found in hashtable bucket 38541
HASH: user operator found in hashtable bucket 21748
HASH: user games found in hashtable bucket 47657
HASH: user gopher found in hashtable bucket 47357
HASH: user ftp found in hashtable bucket 56226
HASH: user nobody found in hashtable bucket 99723
HASH: user vcsa found in hashtable bucket 25959
HASH: user mailnull found in hashtable bucket 78086
HASH: user rpm found in hashtable bucket 72383
HASH: user wnn found in hashtable bucket 59815
HASH: user ntp found in hashtable bucket 21418
HASH: user rpc found in hashtable bucket 72373
HASH: user xfs found in hashtable bucket 17213
HASH: user gdm found in hashtable bucket 50360
HASH: user rpcuser found in hashtable bucket 552
HASH: user nfsnobody found in hashtable bucket 51830
HASH: user nscd found in hashtable bucket 36306
HASH: user ident found in hashtable bucket 40304
HASH: user radvd found in hashtable bucket 66743
HASH: user pcap found in hashtable bucket 55326
HASH: user postfix found in hashtable bucket 23093
HASH: Stored 31 entries from /etc/passwd
HASH: Stored 41 entries from /etc/group
Module: Instantiated unix (unix)
Module: Loaded preprocess
preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups"
preprocess: hints = "/usr/local/etc/raddb/hints"
preprocess: with_ascend_hack = no
preprocess: ascend_channels_per_line = 23
preprocess: with_ntdomain_hack = no
preprocess: with_specialix_jetstream_hack = no
preprocess: with_cisco_vsa_hack = no
Module: Instantiated preprocess (preprocess)
Module: Loaded realm
realm: format = "suffix"
realm: delimiter = "@"
Module: Instantiated realm (suffix)
Module: Loaded files
files: usersfile = "/usr/local/etc/raddb/users"
files: acctusersfile = "/usr/local/etc/raddb/acct_users"
files: compat = "no"
Module: Instantiated files (files)
Module: Loaded detail
detail: detailfile = "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail"
detail: detailperm = 384
detail: dirperm = 493
detail: locking = no
Module: Instantiated detail (detail)
Module: Loaded radutmp
radutmp: filename = "/usr/local/var/log/radius/radutmp"
radutmp: username = "%{User-Name}"
radutmp: perm = 384
radutmp: callerid = yes
Module: Instantiated radutmp (radutmp)
Initializing the thread pool...
thread: start_servers = 5
thread: max_servers = 32
thread: min_spare_servers = 3
thread: max_spare_servers = 10
thread: max_requests_per_server = 0
thread: cleanup_delay = 5
Thread spawned new child 1. Total threads in pool: 1
Thread spawned new child 2. Total threads in pool: 2
Thread spawned new child 3. Total threads in pool: 3
Thread spawned new child 4. Total threads in pool: 4
Thread 1 waiting to be assigned a request
Thread 2 waiting to be assigned a request
Thread 3 waiting to be assigned a request
Thread 4 waiting to be assigned a request
Thread spawned new child 5. Total threads in pool: 5
Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on 1814/udp.
Ready to process requests.
Thread 5 waiting to be assigned a request
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=95, length=55
Thread 1 assigned request 0
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/1/4
Waking up in 5 seconds...
Thread 1 handling request 0, (1 handled so far)
User-Name = "PECKJ1"
User-Password = "N3\360n\363B\354\260\202>\255\016AZ\244\225"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 31
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "ECKJ1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 182
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [PECKJ1] (from client localhost port 0)
Delaying request 0 for 1 seconds
Finished request 0
Going to the next request
Thread 1 waiting to be assigned a request
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=95, length=55
Sending Access-Reject of id 95 to 127.0.0.1:32775
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/0/5
Waking up in 3 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=99, length=57
Thread 2 assigned request 2
Waking up in 3 seconds...
Thread 2 handling request 2, (1 handled so far)
User-Name = "SALDANL1"
User-Password = "\226\270\363\263:E]\276\305\237\231\236-\277AC"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "ALDANL1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [SALDANL1] (from client localhost port 0)
Delaying request 2 for 1 seconds
Finished request 2
Going to the next request
Thread 2 waiting to be assigned a request
--- Walking the entire request list ---
Cleaning up request 0 ID 95 with timestamp 3d9a403e
Sending Access-Reject of id 99 to 127.0.0.1:32775
Waking up in 3 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=103, length=57
Thread 3 assigned request 3
Waking up in 3 seconds...
Thread 3 handling request 3, (1 handled so far)
User-Name = "SCHNEIH1"
User-Password = "\032\257\016\340\032\377\375\n\355\234\367m\347\273\r\255"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "CHNEIH1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [SCHNEIH1] (from client localhost port 0)
Delaying request 3 for 1 seconds
Finished request 3
Going to the next request
Thread 3 waiting to be assigned a request
--- Walking the entire request list ---
Cleaning up request 2 ID 99 with timestamp 3d9a4041
Sending Access-Reject of id 103 to 127.0.0.1:32775
Waking up in 3 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=107, length=57
Thread 4 assigned request 4
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/1/4
Waking up in 2 seconds...
Thread 4 handling request 4, (1 handled so far)
User-Name = "SPANIEM1"
User-Password = "\251\276\313\314I\217\243\026\334C\262\214\202\301\374`"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "PANIEM1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [SPANIEM1] (from client localhost port 0)
Delaying request 4 for 1 seconds
Finished request 4
Going to the next request
Thread 4 waiting to be assigned a request
--- Walking the entire request list ---
Threads: total/active/spare threads = 5/0/5
Cleaning up request 3 ID 103 with timestamp 3d9a4044
Sending Access-Reject of id 107 to 127.0.0.1:32775
Waking up in 4 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=111, length=57
Thread 5 assigned request 5
Waking up in 4 seconds...
Thread 5 handling request 5, (1 handled so far)
User-Name = "SCHNEIB1"
User-Password = "%\017\3661\315|G\\\030\336}^'\303|\374"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "CHNEIB1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [SCHNEIB1] (from client localhost port 0)
Delaying request 5 for 1 seconds
Finished request 5
Going to the next request
Thread 5 waiting to be assigned a request
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=111, length=57
Sending Access-Reject of id 111 to 127.0.0.1:32775
--- Walking the entire request list ---
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=115, length=57
Thread 1 assigned request 7
Cleaning up request 4 ID 107 with timestamp 3d9a4048
Waking up in 1 seconds...
Thread 1 handling request 7, (2 handled so far)
User-Name = "SCHEERP1"
User-Password = "B\330C\315\200\342]!S\215\tu\232)\224\276"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "CHEERP1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [SCHEERP1] (from client localhost port 0)
Delaying request 7 for 1 seconds
Finished request 7
Going to the next request
Thread 1 waiting to be assigned a request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 115 to 127.0.0.1:32775
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=119, length=57
Thread 2 assigned request 8
Cleaning up request 5 ID 111 with timestamp 3d9a404a
Waking up in 1 seconds...
Thread 2 handling request 8, (2 handled so far)
User-Name = "PROFFIM1"
User-Password = "\323\367\310\210\343\215\302+ $~E\273y\254\253"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 31
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "ROFFIM1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 182
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [PROFFIM1] (from client localhost port 0)
Delaying request 8 for 1 seconds
Finished request 8
Going to the next request
Thread 2 waiting to be assigned a request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 119 to 127.0.0.1:32775
Waking up in 2 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=123, length=57
Thread 3 assigned request 9
Waking up in 2 seconds...
Thread 3 handling request 9, (2 handled so far)
User-Name = "CHETTYC1"
User-Password = "e\346\375\336qM\332\230;\356\\\350\222Z\337\334"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 41
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "HETTYC1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 189
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [CHETTYC1] (from client localhost port 0)
Delaying request 9 for 1 seconds
Finished request 9
Going to the next request
Thread 3 waiting to be assigned a request
--- Walking the entire request list ---
Cleaning up request 7 ID 115 with timestamp 3d9a404d
Sending Access-Reject of id 123 to 127.0.0.1:32775
Waking up in 2 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=127, length=54
Thread 4 assigned request 10
Waking up in 2 seconds...
Thread 4 handling request 10, (2 handled so far)
User-Name = "COXL1"
User-Password = "\366#\304\234B\217M\304\235\211\013r\032\004"y"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 41
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "OXL1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 189
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [COXL1] (from client localhost port 0)
Delaying request 10 for 1 seconds
Finished request 10
Going to the next request
Thread 4 waiting to be assigned a request
--- Walking the entire request list ---
Cleaning up request 8 ID 119 with timestamp 3d9a404f
Sending Access-Reject of id 127 to 127.0.0.1:32775
Waking up in 2 seconds...
rad_recv: Access-Request packet from host 127.0.0.1:32775, id=132, length=56
Thread 5 assigned request 11
Waking up in 2 seconds...
Thread 5 handling request 11, (2 handled so far)
User-Name = "STINEE1"
User-Password = "\246\367\3436j\2620V\327j\202zF\007m\226"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "0"
modcall: entering group authorize
hints: Matched DEFAULT at 36
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm NULL for User-Name = "TINEE1"
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 151
users: Matched DEFAULT at 170
users: Matched DEFAULT at 196
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Login incorrect: [STINEE1] (from client localhost port 0)
Delaying request 11 for 1 seconds
Finished request 11
Going to the next request
Thread 5 waiting to be assigned a request
--- Walking the entire request list ---
Cleaning up request 9 ID 123 with timestamp 3d9a4051
Sending Access-Reject of id 132 to 127.0.0.1:32775
Waking up in 2 seconds...
--- Walking the entire request list ---
Cleaning up request 10 ID 127 with timestamp 3d9a4053
Waking up in 2 seconds...
--- Walking the entire request list ---
Cleaning up request 11 ID 132 with timestamp 3d9a4055
Nothing to do. Sleeping until we see a request.
MASTER: exit on signal (2)
