RE: Disabling EAP-TLS while keeping EAP-PEAP

[tnt]

If someone can gain that level of access and decides JUST to issue a wild
certificate - write him a Thank You letter. What if he cretes a
batch of new users? Or resets ALL your users passwords to Leroy wuz
'ere? Your worries are misplaced.

Ivan Kalik
Kalik Informatika ISP

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: 2.0.0-pre1 - cannot build on FreeBSD

[Nicolas Baradakis]

David Wood wrote:

 It didn't take until tomorrow - this looks better, and is tested and 
 apparently working with autoconf 2.61.

Thanks for doing background research about the bug, and thanks for
the patch.

 What do you think? Do you agree that that's a better solution than the 
 patch in bug #454?

I agree. It seems to be the underlying problem, so it's better to fix
it like that. I've applied your patch to HEAD and branch 1.1.

 Meanwhile, I think I've fixed the packaging list for the FreeRADIUS 2 
 port on FreeBSD (and the script that generates it) - though this process 
 did flag up one oddity. src/modules/rlm_eap/types/rlm_eap_psk is not 
 built in 2.0.0-pre1. So far as I can tell, this is because Makefile.in 
 is never turned into a Makefile. Is this intentional?

I think this module is still experimental, therefore it's not surprising
there is no Makefile and no configure script.

-- 
Nicolas Baradakis

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: won't work on large users file

[Jeff]

That was it, thanks
the :=
---
I have another question.
I am trying to get the script posted in the faq page at
www.freeradius.org to update users file
as a cron job

For some reason none of this is working under opensuse operating system

Any Suggestions

It doesn't like the find users -nt .last-reload
the part -nt







From: [EMAIL PROTECTED]
To: FreeRadius users mailing list [mailto:[EMAIL PROTECTED]
Sent: Sat, 02 Jun 2007 17:03:37 -0400
Subject: Re: won't work on large users file

What doesn't work? Can you post radiusd -X output for the test user.

In 1.1.6 you should use Cleartext-Password as attribute and := as
operator. If those reply items are the same for all the users you can
put them in a single DEFAULT entry and not in every user config. You
already have such entries for Framed-User and PPP in original users file.

Ivan Kalik
Kalik Informatika ISP


Dana 2/6/2007, Jeff [EMAIL PROTECTED] piše:

Has any one had this issue?
Large users file appx 900 users with each users template as follows
I don't know if its a corrupt line some where or not but the file is auto 
generated by Rodopi so
i would think its not that

heres what the users template is..

# 2353731881 -- First User
testuser Password = testpw
 Framed-Protocol = PPP,
 Service-Type = Framed-User,
 Session-Timeout = 14400,
 Port-Limit = 1,
 Ascend-Data-Filter = ip in forward tcp est,
 Ascend-Data-Filter = ip in forward dstip 74.218.65.132/32,
 Ascend-Data-Filter = ip in forward dstip 74.218.65.133/32,
 Ascend-Data-Filter = ip in forward dstip 204.13.240.3/32,
 Ascend-Data-Filter = ip in forward dstip 204.13.240.3/32,
 Ascend-Data-Filter = ip in drop tcp dstport = 25,
 Ascend-Data-Filter = ip in forward

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html