[EMAIL PROTECTED] wrote:
> First line will check the password. You might need to add Auth-Type:=
> Local there.
In 1.1.4 and following, that is no longer necessary.
Do NOT recommend the use of Auth-Type. It's almost always wrong.
Alan DeKok.
--
http://deployingradius.com - The web
virulence wrote:
> Alright bro, after doing that i get a message that
>
> Error: WARNING: Possible DoS attack from host 172.16.
> 1.104: Too many attributes in request (received 201, max 200 are allowed).
>
> but after that it is ok any idea how to get rid of this error?
read radiusd.conf,
Alright bro, after doing that i get a message that
Error: WARNING: Possible DoS attack from host 172.16.
1.104: Too many attributes in request (received 201, max 200 are allowed).
but after that it is ok any idea how to get rid of this error?
any one know wad's wrong... I'm still stuck a
People,
I am trying to get user authenticated against a
shell script. I have added the following configuration
to freeradius:
under the modules section i have added
exec myauth {
wait = yes
program =
"/etc/raddb/myscripts/auth.sh %{User-Name}"
Phil Mayers wrote:
> How about a config item like so:
>
> username Pap-Auth-DelegateTo := "moduleinstancename"
>
> and make rlm_pap the ONLY valid option in authorize/authenticate.
>
> rlm_pap, when called in authenticate, checks if the config item is set.
> If so, it finds the given modul
Kenneth Penza wrote:
> I am trying to get user authenticated against a
> shell script. I have added the following configuration
> to freeradius:
>
> under the modules section i have added
> exec myauth {
> wait = yes
> program =
> "/etc/raddb/myscripts
Alexander V. Klepikov wrote:
...
> rlm_sql_postgresql: PostgreSQL Query failed Error: no connection to the
> server
> radiusd in free(): error: chunk is already free
Please run the server under valgrind. I don't use postgresql, so I
can't tell what's going wrong.
Alan DeKok.
--
http://dep
Dropping request (1025 is too many): from clie
nt abc :1818 - ID: 97
Info: WARNING: Please check the radiusd.conf file. ?T
he value for 'max_requests' is probably set too low.
apparently this is what i get after setting the attrbutes to a higher level.
May I know what constitutes to the at
vir\ulence wrote:
> Dropping request (1025 is too many): from clie
> nt abc :1818 - ID: 97
> Info: WARNING: Please check the radiusd.conf file. ?T
> he value for 'max_requests' is probably set too low.
>
> apparently this is what i get after setting the attrbutes to a higher level.
Then
Hi,
i have installed freeradius 1.1.5 on debian machine now how i can install
freeradius-mysql package?
When i try 'apt-get install freeradius-mysql' this is the error:
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the un
Alan DeKok wrote:
> Phil Mayers wrote:
>> How about a config item like so:
>>
>> username Pap-Auth-DelegateTo := "moduleinstancename"
>>
>> and make rlm_pap the ONLY valid option in authorize/authenticate.
>>
>> rlm_pap, when called in authenticate, checks if the config item is set.
>> If so,
On 3/19/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Hi,
>
> i have installed freeradius 1.1.5 on debian machine now how i can install
> freeradius-mysql package?
> freeradius-mysql Depends: freeradius(= 1.0.2-4sarge3) but 1.1.3 is to be
> installed
> E: Broken packages
That is a distribu
Le Fri, Mar 16, 2007 at 04:28:52PM +0200, Etienne Pretorius ecrivait:
> I would rather keep it as it is, as it is a problem to be looked at and can be
> identified by the logs.
And what if the first mysql server goes down right before receiving a
SIGHUP because of logrotate ?
Regards,
Fox.
-
Lis
Who has CA.all script for generating test certificates for testng purpose on
radius. Link me up.
==
Benjamin K. Eshun
- Message d'origine
De : Alan DeKok <[EMAIL PROTECTED]>
À : FreeRadius users mailing list
Envoyé le : Lundi, 19 Mars 2
Hello, Alexander!
You wrote to All on Fri, 16 Mar 2007 17:23:19 +0200:
AVK> It looks like accounting module cannot properly make a connection
AVK> to SQL
AVK> server, but authorize module can. I found that with num_sql_socks
AVK> <= 2
AVK> FreeRadius works perfect, I made several tests stopping an
http://www.openssl.org/
Dana 19/3/2007, "Eshun Benjamin" <[EMAIL PROTECTED]> piše:
>Who has CA.all script for generating test certificates for testng purpose on
>radius. Link me up.
>
>==
>
>Benjamin K. Eshun
>
>- Message d'origine
>De
Hello,
Is it possible to "allow only one authentication per NAS" but "not
allow many authentication on the same NAS" per user ?
ex: toto authenticate on NAS1 and NAS2 simultaneous
toto can't authenticate two times on NAS1 simultaneous
-
List info/subscribe/unsubscribe? See http://www.fre
Sorry Alan,
I do not really understand you. firstly, the server is a totally empty
server as it was set up by my colleague for me for testing before
implementation and secondly is there a way to check the packets that i am
suppose to be expecting. By the way, the results came as a result of a
radt
Alexander V. Klepikov wrote:
>
> Well, I think I found why FreeRadius crashes. Unconnected SQL socket is
> passed to sql_close function in module rlm_sql in function rlm_sql_query
> (src/modules/rlm_sql/sql.c line 499). Here is the patch:
Hmm... it looks like similar patches were added in revi
virulence wrote:
> Sorry Alan,
> I do not really understand you. firstly, the server is a totally empty
> server as it was set up by my colleague for me for testing before
> implementation
That doesn't matter. The client is sending packets. The
configuration items that generate those error mes
Marc Boisis-Delavaud wrote:
> Is it possible to "allow only one authentication per NAS" but "not allow
> many authentication on the same NAS" per user ?
Yes. But you'll have to manage that DB yourself.
With a little bit of code changes to rlm_radutmp, you could make the
filename configurable
To all,
I am finally attempting to upgrade from version 1.1.3 to 1.1.5 and have
encountered an issue when attempting to use pap to authenticate users
with the new auto_header feature. The Cisco NAS I have used over the
past three years has always sent the user password to FreeRADIUS in
clear-text,
After alot of experimenting & researching, I still haven't found
a solution to the TTL anonymous outer identity being used for
accounting.
I have set a DEFAULT entry that sets the User-Name attribute via
':=', but I still end up with two User-Name attributes (anonymous
identity & real identity).
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
debian:/etc/freeradius# /etc/init.d/freeradius start
Starting FreeRADIUS daemon: freeradiusSun Mar 18 19:29:57 2007 : Info:
Starting - reading configuration files ...
.
debian:/etc/freeradius# /etc/init.d/freeradius stop
Stopping FreeRADIUS daemon: fr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
peppeska wrote:
> freeradius.pid not found ??? what???
>
>
Start it like this, as root:
# radiusd -X
Read the output, that should point you to the problem.
- --
== +--+
Martin Gadboi
Sam Schultz wrote:
> P.S. A link to a list of known-good access points, or personal
> recommendations on access points would also be appreciated.
> We will be replacing a few 3com APs soon because they don't
> play well with...well...ANYTHING. One (3com OfficeConnect)
> doesn't even
hello Freeradius,
well, Its a strange problem,
However i'm on FreeBSD 6.1R, Freeradius, Chillispot, mysql and i use
myprepaid php
for account interface.
This system is up and running since september 2006, last week, we start to
see a strange problem
some account are disappearing from the system
Dear Sender,
I will be out of the office till the 1st of April 2007.
During this time I will have no access to my emails.
Kind Regards,
Olaf Becker
TRUST.WIZCOM. by Travelport
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I want to add new VSA parameters to freeradius. This means that I need to
add a new dictionary file. But
I am not able to understand is how do I add attributes whose value is
another attribute. For eg.
ATTRIBUTE NITIN>
NAVEEN
Where NAVEEN is
Hi,
I am using freeradius1.1 on linux suse 10.1 and chillispot for captive
portal.
I have implemented EAP -TLS using client and server side certificate and it
worked well.
but even after client authentication from certificate. the
router(chillispot) prompts for a username and password and then doe
The link below works fine,
http://www.missl.cs.umd.edu/wireless/eaptls/doc/CA.all
==
Benjamin K. Eshun
- Message d'origine
De : "[EMAIL PROTECTED]" <[EMAIL PROTECTED]>
À : FreeRadius users mailing list
Envoyé le : Lundi, 19 Mars 2007,
31 matches
Mail list logo
