(RADIATOR) Radiator Ignoring Passwords

Raymond Brighenti Fri, 30 Jun 2000 02:26:59 -0700
Hi,

Just got Radiator running with MySQL, all seemed to be going alright until 
I notice that it was accepting any password given as long as a valid 
username was used.

I've dropped it back to using the passwd file but I'm bluffed as to what is 
happening. Also I've noticed that nothing is getting written to the 
password logfile so I'm assuming it must be something in my config which 
I've listed below as well as some of the log file at Trace 4

Thanks

Ray

===================
radius.cfg
===================
Foreground
LogStdout
Trace 3
AuthPort 1812
AcctPort 1813
DbDir /etc/raddb
DictionaryFile /etc/raddb/dictionary
PidFile /var/log/radius/radiusd.pid

<Log FILE>
# You can use special formatting characters
Filename /var/log/radius/radiator
# Trace level to use (allows same values as the global Trace level)
Trace 3
</Log>


<Client nas.mydomain>
Secret secret
DupInterval 0
</Client>

<Realm DEFAULT>
AcctLogFileName /var/log/radacct/smax/detail
PasswordLogFileName /etc/raddb/password.log
RejectHasReason

<AuthBy GROUP>
AuthByPolicy ContinueUntilAccept

<AuthBy SQL>
DBSource dbi:mysql:dbase:host.mydomain
DBUsername username
DBAuth password
DefaultReply Service-Type = Framed-User,\
Framed-Protocol = PPP,\
Framed-Routing = None,\
Framed-Netmask = 255.255.255.255,\
Ascend-Idle-Limit = 1500,\
Framed-MTU = 1500

AuthSelect select ENCRYPTEDPASSWORD from SUBSCRIBERS where USERNAME='%n'
EncryptedPassword
# AuthColumnDef 0, User-Password, check
AuthColumnDef 1, CHECKATTR, check
AuthColumnDef 2, REPLYATTR, reply

AcctColumnDef USERNAME,User-Name
AcctColumnDef TIME_STAMP,Timestamp,integer
AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
AcctColumnDef ACCTSESSIONID,Acct-Session-Id
AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
AcctColumnDef NASIDENTIFIER,NAS-Identifier,string
AcctColumnDef NASPORT,NAS-Port,integer
AcctColumnDef CALLERID,Caller-Id,integer
AcctColumnDef DISCONNECT,Ascend-Disconnect-Cause,integer
AcctColumnDef CAUSE,Ascend-Connect-Progress,integer
AcctColumnDef TXRATE,Ascend-Xmit-Rate,integer
AcctColumnDef RXRATE,Ascend-Data-Rate,integer
AcctColumnDef DNIS,Client-Port-DNIS,integer
AcctColumnDef FRAMEDIPADDRESS,Framed-Address
# AcctColumnDef TIME_STAMP_NORM,Timestamp,integer-date
AcctColumnDef TIME_STAMP_NORM,Timestamp,formatted-date,'%Y/%m/%e %H:%M:%S'
</AuthBy>
</AuthBy>
</Realm>


===================
Log File
===================
Fri Jun 30 19:05:47 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:05:47 2000: DEBUG: Deleting session for churchil, 
203.23.200.23, 20112
Fri Jun 30 19:05:47 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:05:47 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:05:47 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:05:47 2000: DEBUG: Query is: select ENCRYPTEDPASSWORD from 
SUBSCRIBERS where USERNAME='churchil'
Fri Jun 30 19:05:47 2000: DEBUG: Radius::AuthSQL looks for match with churchil
Fri Jun 30 19:05:47 2000: DEBUG: Radius::AuthSQL ACCEPT:
Fri Jun 30 19:05:47 2000: DEBUG: Access accepted for churchil
Fri Jun 30 19:05:47 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:05:47 2000: DEBUG: Adding session for churchil, 
203.23.200.23, 20112
Fri Jun 30 19:05:47 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:05:47 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:05:47 2000: DEBUG: Handling accounting with Radius::AuthSQL
Fri Jun 30 19:05:47 2000: DEBUG: do query is: insert into ACCOUNTING
(USERNAME, TIME_STAMP, ACCTSTATUSTYPE, ACCTDELAYTIME, ACCTSESSIONID, 
NASIDENTIFIER, NASPORT, CALLERID, DNIS, FRAMEDIPADDRESS, TIME_STAMP_NORM)
values
('churchil', 962355947, 'Start', 0, '331061372', '203.23.200.23', 20112, 
269646320, 69669200, '203.23.200.90', '2000/06/30 19:05:47')
Fri Jun 30 19:05:47 2000: DEBUG: Accounting accepted
Fri Jun 30 19:19:13 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:19:13 2000: DEBUG: Deleting session for mcnative, 
203.23.200.23, 20231
Fri Jun 30 19:19:13 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:19:13 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:19:13 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:19:13 2000: DEBUG: Query is: select ENCRYPTEDPASSWORD from 
SUBSCRIBERS where USERNAME='mcnative'
Fri Jun 30 19:19:13 2000: DEBUG: Radius::AuthSQL looks for match with mcnative
Fri Jun 30 19:19:13 2000: DEBUG: Radius::AuthSQL ACCEPT:
Fri Jun 30 19:19:13 2000: DEBUG: Access accepted for mcnative
Fri Jun 30 19:19:17 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:19:17 2000: DEBUG: Adding session for mcnative, 
203.23.200.23, 20231
Fri Jun 30 19:19:17 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:19:17 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:19:17 2000: DEBUG: Handling accounting with Radius::AuthSQL
Fri Jun 30 19:19:17 2000: DEBUG: do query is: insert into ACCOUNTING
(USERNAME, TIME_STAMP, ACCTSTATUSTYPE, ACCTDELAYTIME, ACCTSESSIONID, 
NASIDENTIFIER, NASPORT, CALLERID, DNIS, FRAMEDIPADDRESS, TIME_STAMP_NORM)
values
('mcnative', 962356757, 'Start', 0, '331061375', '203.23.200.23', 20231, 
269634954, 69669200, '203.23.200.91', '2000/06/30 19:19:17')
Fri Jun 30 19:19:17 2000: DEBUG: Accounting accepted
Fri Jun 30 19:20:45 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:20:45 2000: DEBUG: Deleting session for bargi, 203.23.200.29,
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:20:45 2000: DEBUG: Query is: select ENCRYPTEDPASSWORD from 
SUBSCRIBERS where USERNAME='bargi'
Fri Jun 30 19:20:45 2000: DEBUG: Radius::AuthSQL looks for match with bargi
Fri Jun 30 19:20:45 2000: DEBUG: Radius::AuthSQL ACCEPT:
Fri Jun 30 19:20:45 2000: DEBUG: Access accepted for bargi
Fri Jun 30 19:20:45 2000: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Fri Jun 30 19:20:45 2000: DEBUG: Deleting session for bargi, 203.23.200.29,
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthGROUP
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:20:45 2000: DEBUG: Handling with Radius::AuthSQL
Fri Jun 30 19:20:45 2000: DEBUG: Query is: select ENCRYPTEDPASSWORD from 
SUBSCRIBERS where USERNAME='bargi'
Fri Jun 30 19:20:45 2000: DEBUG: Radius::AuthSQL looks for match with bargi
Fri Jun 30 19:20:45 2000: DEBUG: Radius::AuthSQL ACCEPT:
Fri Jun 30 19:20:45 2000: DEBUG: Access accepted for bargi




============================================
"In cases of major discrepancy it's always reality
that's got it wrong....reality is frequently inaccurate."
============================================


===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator Ignoring Passwords

Reply via email to
