date:19990426

Re: (RADIATOR) Encrypted Password, How-To?

1999-04-26 Thread Darwin A. Bawasanta


Mike, 


i got these from my logfile on trace #4 when i did a radpwtst -user vernie -p
testfail (which "testfail" isn't the correct password).

logfile entry:

Mon Apr 26 15:17:25 1999: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 1856 
Code:   Access-Request
Identifier: 114
Authentic:  1234567890123456
Attributes:
User-Name = "vernie"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async  
User-Password = "141238,217201=m15418889160216}x153"
   
Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL
Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL
Mon Apr 26 15:17:25 1999: DEBUG: Query is: select rdu_encrpass, rdu_sess_limit,
rdu_timeofday from auth_rdu_tbl where rdu_username = 'vernie'

Mon Apr 26 15:17:25 1999: DEBUG: Radius::AuthSQL looks for match with vernie
Mon Apr 26 15:17:25 1999: DEBUG: Radius::AuthSQL ACCEPT:
Mon Apr 26 15:17:25 1999: DEBUG: Access accepted for vernie
Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: 
*** Sending to 127.0.0.1 port 1856 
Code:   Access-Accept
Identifier: 114
Authentic:  1234567890123456
Attributes:

Mon Apr 26 15:17:25 1999: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 1856 
Code:   Accounting-Request
Identifier: 115
Authentic:  175243p159Ur133)251149227243X13818120
Attributes:
User-Name = "vernie"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "1234"
Acct-Status-Type = Start

Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL
Mon Apr 26 15:17:25 1999: DEBUG: Handling accounting with Radius::AuthSQL  
Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into acct_log_tbl
(acct_nas_port, acct_statustype, acct_username, acct_session_id)
values
(1234, 'Start', 'vernie', '1234')

Mon Apr 26 15:17:25 1999: DEBUG: sdb1 Adding session for vernie, 203.63.154.1,
1234
Mon Apr 26 15:17:25 1999: DEBUG: do query is: delete from RADONLINE where
NASIDENTIFIER='203.63.154.1' and NASPORT=1234

Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into RADONLINE (USERNAME,
NASIDENTIFIER, NASPORT, ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS,
NASPORTTYPE, SERVICETYPE) values ('vernie', '203.63.154.1', 1234, '1234',
925111045, '', 'Async', 'Framed-User')

Mon Apr 26 15:17:25 1999: DEBUG: Accounting accepted
Mon Apr 26 15:17:25 1999: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 1856 
Code:   Accounting-Response
Identifier: 115
Authentic:  175243p159Ur133)251149227243X13818120
Attributes:

Mon Apr 26 15:17:25 1999: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 1856 
Code:   Accounting-Request
Identifier: 116
Authentic:  169163gi148144f237d166=j8229188
Attributes:
User-Name = "vernie"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "1234"
Acct-Status-Type = Stop
Acct-Delay-Time = 0
Acct-Session-Time = 1000
Acct-Input-Octets = 2
Acct-Output-Octets = 3

Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT'
Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL 
Mon Apr 26 15:17:25 1999: DEBUG: Handling accounting with Radius::AuthSQL  
Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into acct_log_tbl
(acct_nas_port, acct_inputoct, acct_statustype, acct_outputoct,
acct_delaytime, acct_username, acct_session_id, acct_session_time)
values
(1234, 2, 'Stop', 3, 0, 'vernie', '1234', 1000)

Mon Apr 26 15:17:25 1999: DEBUG: sdb1 Deleting session for vernie,
203.63.154.1, 1234
Mon Apr 26 15:17:25 1999: DEBUG: do query is: delete from RADONLINE where
NASIDENTIFIER='203.63.154.1' and NASPORT=1234

Mon Apr 26 15:17:25 1999: DEBUG: Accounting accepted
Mon Apr 26 15:17:25 1999: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 1856 
Code:   Accounting-Response
Identifier: 116
Authentic:  169163gi148144f237d166=j8229188
Attributes: 



On 26-Apr-99 Mike McCauley wrote:
 Hi Darwin,
 
 On Apr 26,  2:13pm, Darwin A. Bawasanta wrote:
 Subject: (RADIATOR) Encrypted Password, How-To?
 Hi All,


 we just got an eval copy of radiator 2.13.1 and i'm trying to set this thing
 right.  However, i may have overlooked something here regarding the use of
 Encrypted Passwords, i can't seem to get it working properly.

 This

(RADIATOR) Users file format with PM3

1999-04-26 Thread Fernando Martin


Hi all,

We are using Radiator 2.13.1 with patches over NT 4.0 SP3 and PM3
with radpwtst it works.

1- We want to know the users file configuration that we need to give a
dinamic IP ( We know that we can give an IP depending of the PORT). ( Using
PM3 client)
I have the dictionay.livingston file with  all the ATTRIBUTE and VALUE

I do not want to use the livingston users file. I want to define a new users
file with the users profile ( IP assignement...).

Could you send us a users file with this configuration?

Someting like this:


Users:

mikem4  Password = "fred"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Netmask = 255.255.255.255,
Framed-Routing = None,
Framed-MTU = 1500,
Framed-Compression = Van-Jacobson-TCP-IP


2- My radius.cfg is:


Foreground
LogStdout

#  log (detail, radius.pid, password.log, ...)

LogDir  ./rad/log

#  usuarios ( users, dictionary, ...)

DbDir   ./rad/bd

DictionaryFile  %D/dictionary.livingston


# You will probably want to change this to suit your site.


Client localhostT
Secret  mysecret
# base IP 
#  Ej port=5 194.24.0.129+5 
FramedGroupBaseAddress  193.224.0.0.129
/Client
# for PM3

 Client 193.224.0.123
Secret  mysecret
FramedGroupBaseAddress  193.224.0.129
DupInterval 0
 /Client

# others

Client DEFAULT
Secret  mysecret
FramedGroupBaseAddress  193.224.0.0.129
/Client



Realm DEFAULT
MaxSessions 1
PasswordLogFileName %L/password.log

AuthBy FILE
Filename %D/users
/AuthBy
# Log accounting to the detail file in LogDir
AcctLogFileName %L/detail
AcctLogFileFormat %User-Name %Acct-Status-Type %Acct-Session-Id
WtmpFileName %L/wtmp
/Realm

I am using dictionary.livingston to access ATTRIBUTEs and VALUEs.
Is all right? 

3- I have problems with AcctLogFileFormat %User-Name %Acct-Status-Type
%Acct-Session-Id.
I can not write all what I want into the detail file.
Only that when fred authentication

Detail:

fredser-Name %Acct-Status-Type %Acct-Session-Id
fredser-Name %Acct-Status-Type %Acct-Session-Id
fredser-Name %Acct-Status-Type %Acct-Session-Id
fredser-Name %Acct-Status-Type %Acct-Session-Id

I am using ATTRIBUTEs defined into dictionary.livingston file.
What is the right format?

4-If you have experience with Radiator and PM3, please let me know if you
could help me.

Thank you for all your help and time.

Best regards,


Fernando Martin 
Interlinea2000
http://www.i2000.es
Voz:(943)-621033
Fax:(943)-627340


===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Linux again

1999-04-26 Thread Chris M


OK, I have AuthBy UNIX and AuthBy DBFILE working, so now I'm
trying to turn on Realms.

I have these rules:

Realm peakpeak.com
# turn into lowercase
RewriteUsername tr/A-Z/a-z/
AuthByPolicy ContinueWhileAccept
AuthBy UNIX
# strip realm name
RewriteUsername s/^([^@]+)\@peakpeak\.com/$1/

What I want to happen is for AuthBy UNIX to rewrite usernames
[EMAIL PROTECTED] into just chrism.

This RewriteUsername statement does not appear to do that :)  Any 
ideas?

Thanks,
Chris

===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Linux again

1999-04-26 Thread Mike McCauley


On Apr 26,  2:43pm, Chris M wrote:
 Subject: (RADIATOR) Linux again
 OK, I have AuthBy UNIX and AuthBy DBFILE working, so now I'm
 trying to turn on Realms.

 I have these rules:

 Realm peakpeak.com
 # turn into lowercase
 RewriteUsername tr/A-Z/a-z/
 AuthByPolicy ContinueWhileAccept
 AuthBy UNIX
 # strip realm name
 RewriteUsername s/^([^@]+)\@peakpeak\.com/$1/

 What I want to happen is for AuthBy UNIX to rewrite usernames
 [EMAIL PROTECTED] into just chrism.

 This RewriteUsername statement does not appear to do that :)  Any
 ideas?

The RewriteUsername should be inside the Realm clause, not the AuthBy clause.
AuthBy does not do RewriteUsername.

Cheers.

-- 
Mike McCauley   [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
Phone +61 3 9598-0985   Fax   +61 3 9598-0955

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

(RADIATOR) Importing RADIUS logs into a database

1999-04-26 Thread Chris M


What is the best way to get all the call stats from previous
RADIUS logs (before I started using Radiator) into an SQL
database so that AuthBy SQL can start adding records alongside
all the old records?

Thanks,
Chris

===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Re: (RADIATOR) Encrypted Password, How-To?

(RADIATOR) Users file format with PM3

(RADIATOR) Linux again

Re: (RADIATOR) Linux again

(RADIATOR) Importing RADIUS logs into a database

5 matches

Site Navigation

Mail list logo

Footer information