wichert [Sun, 4 May 2003 09:31:32 +0000 (09:31 +0000)]
Cleanup debian/rules, partially based on a patch from Paul Hampson
wichert [Sun, 4 May 2003 09:27:06 +0000 (09:27 +0000)]
Update Build-Depends and properly conflict with old radiusd-freeradius packages
wichert [Sun, 4 May 2003 09:21:48 +0000 (09:21 +0000)]
Update copyright information based on a patch by Paul Hampson
wichert [Sun, 4 May 2003 09:17:37 +0000 (09:17 +0000)]
Patch from Paul Hampson: use invoke-rc.d when present, and only remove rc.d scripts when purging
wichert [Sun, 4 May 2003 09:12:36 +0000 (09:12 +0000)]
Patch from Paul Hampson: update configure check for current OpenSSL which renamed des_cbc_encrypt to DES_cbc_encrypt
aland [Thu, 1 May 2003 18:57:22 +0000 (18:57 +0000)]
Removed raduse, as it's been marked 'deprecated' for a long time.
aland [Thu, 1 May 2003 17:26:54 +0000 (17:26 +0000)]
Updates for static IP's
aland [Wed, 30 Apr 2003 15:22:15 +0000 (15:22 +0000)]
Be a little better about locking conditionals
wichert [Wed, 30 Apr 2003 11:41:20 +0000 (11:41 +0000)]
Aargh, fix up bad renaming
wichert [Wed, 30 Apr 2003 11:37:16 +0000 (11:37 +0000)]
Patch from Paul Hampson to clean up Debian packaging
3APA3A [Tue, 29 Apr 2003 20:46:23 +0000 (20:46 +0000)]
+ Q&A added for using rlm_passwd with realms
aland [Tue, 29 Apr 2003 20:33:59 +0000 (20:33 +0000)]
We don't need gdbm, so don't look for it while configuring
kkalev [Sat, 26 Apr 2003 09:54:34 +0000 (09:54 +0000)]
Apply patch from Paul Hampson <Paul.Hampson@Pobox.Com> to work for a
netmask of 32
kkalev [Sat, 26 Apr 2003 09:39:08 +0000 (09:39 +0000)]
Remove SINGLE-VALUE for ldapGroupName and LdapHuntGroupName
wichert [Fri, 25 Apr 2003 15:55:35 +0000 (15:55 +0000)]
Set default value for op columns
wichert [Wed, 23 Apr 2003 15:33:42 +0000 (15:33 +0000)]
Postgres does not have a DATETIME type, use TIMESTAMP(0) instead
aland [Wed, 23 Apr 2003 15:00:58 +0000 (15:00 +0000)]
Defined sysconfdir
aland [Wed, 23 Apr 2003 14:44:35 +0000 (14:44 +0000)]
Be a little more descriptive in what the error is.
aland [Tue, 22 Apr 2003 16:02:35 +0000 (16:02 +0000)]
If we're re-processing the request, re-set *all* parameters,
not just some
aland [Mon, 21 Apr 2003 21:05:59 +0000 (21:05 +0000)]
Allow radclient to send disconnect packets, which are supported
by some NAS vendors.
Based on a patch by Vladimir Krymov
aland [Mon, 21 Apr 2003 20:59:12 +0000 (20:59 +0000)]
Minor changes to print out more useful packet type names.
Allow sending of disconnect packets. It takes no additional
code, so what the heck.
aland [Mon, 21 Apr 2003 20:39:57 +0000 (20:39 +0000)]
Added defines for new packet types and port
aland [Mon, 21 Apr 2003 19:59:11 +0000 (19:59 +0000)]
Only look for continuations if the line isn't empty.
Bug noted by Johan M. Andersen
aland [Mon, 21 Apr 2003 16:00:04 +0000 (16:00 +0000)]
Corrected typos
aland [Mon, 21 Apr 2003 15:45:18 +0000 (15:45 +0000)]
Added Wireless ISP Roaming dictionary, from James Underwood
kkalev [Sat, 19 Apr 2003 16:26:10 +0000 (16:26 +0000)]
Create an AcctUniqueId before adding a row in radacct in log_badlogins.
aland [Fri, 18 Apr 2003 18:33:05 +0000 (18:33 +0000)]
More text
aland [Fri, 18 Apr 2003 18:25:08 +0000 (18:25 +0000)]
End the list of configuration parameters.
From a bug found by Nathan Coraor
fcusack [Fri, 18 Apr 2003 02:42:24 +0000 (02:42 +0000)]
Add some attributes
aland [Thu, 17 Apr 2003 13:18:16 +0000 (13:18 +0000)]
Updated instructions on the use of '='
aland [Wed, 16 Apr 2003 15:07:37 +0000 (15:07 +0000)]
More updates
aland [Wed, 16 Apr 2003 13:53:01 +0000 (13:53 +0000)]
Apparently magic doesn't work.
aland [Tue, 15 Apr 2003 20:28:45 +0000 (20:28 +0000)]
When deleting requests from the list/cache, delete them if they've
been marked as "don't cache", instead of checking for a number
of special conditions.
In the 'process request' code, do the checks for special conditions,
and set the "don't cache" flag.
aland [Tue, 15 Apr 2003 18:04:10 +0000 (18:04 +0000)]
Updated the thread pool management so that servicing a request
will NOT cause it to walk through the entire thread pool.
Instead, we just pick the next available thread, starting off from
where we left off last time. This speeds up the selection of
a thread for a request, and simplifies the code.
aland [Tue, 15 Apr 2003 18:00:10 +0000 (18:00 +0000)]
Copy over User-Password, too, as sending it has hacked it's value.
kkalev [Tue, 15 Apr 2003 13:04:25 +0000 (13:04 +0000)]
Limit the split() to 2 elements in lib/defaults.php3
kkalev [Mon, 14 Apr 2003 22:17:43 +0000 (22:17 +0000)]
Add support for regexp and like operators in accounting report generator
3APA3A [Mon, 14 Apr 2003 09:14:43 +0000 (09:14 +0000)]
+ Added example of rlm_passwd configuration for SAMBA passwd files
aland [Fri, 11 Apr 2003 20:37:59 +0000 (20:37 +0000)]
Added a pointer to the RADIUS book, and text saying how to be nice
to the developers.
aland [Fri, 11 Apr 2003 17:54:58 +0000 (17:54 +0000)]
More text
aland [Thu, 10 Apr 2003 18:16:57 +0000 (18:16 +0000)]
Update with new names.
Hmm... there appears to be a lot of overlap and duplication
between the FOO-Type files. They should probably be cleaned up,
and turned into one document.
aland [Thu, 10 Apr 2003 18:09:02 +0000 (18:09 +0000)]
Made names of Auth-Type, etc. more consistent across the
dictionary, C definitions, and radiusd.conf
aland [Thu, 10 Apr 2003 17:17:28 +0000 (17:17 +0000)]
This attempt at static linking appears to work a bit better
aland [Thu, 10 Apr 2003 16:14:08 +0000 (16:14 +0000)]
Added vendor-specific packet types defined in RFC 2882
kkalev [Thu, 10 Apr 2003 16:10:06 +0000 (16:10 +0000)]
Add a <?php tag instead of a <?. Bug noted by Isam Ishaq <isam@planet.edu>
aland [Thu, 10 Apr 2003 15:37:56 +0000 (15:37 +0000)]
More explanations
aland [Wed, 9 Apr 2003 15:12:09 +0000 (15:12 +0000)]
Patch from Chris Brotsos: If all home servers for realms are dead,
then we MAY want to give up, and mark all of them alive again.
This helps to prevent request starvation.
aland [Wed, 9 Apr 2003 14:57:58 +0000 (14:57 +0000)]
Added notes on new packet_type for rlm_exec
aland [Wed, 9 Apr 2003 14:55:09 +0000 (14:55 +0000)]
Added configuration option to allow execution on packet types
pnixon [Wed, 9 Apr 2003 08:58:19 +0000 (08:58 +0000)]
New views and stored procedures to facilitate billing
aland [Tue, 8 Apr 2003 21:06:56 +0000 (21:06 +0000)]
Deleted dead code. No algorithm changes.
wichert [Tue, 8 Apr 2003 20:47:29 +0000 (20:47 +0000)]
Fix return logic in sql_get_socket()
aland [Tue, 8 Apr 2003 20:15:10 +0000 (20:15 +0000)]
Hmm... this may work better
aland [Tue, 8 Apr 2003 20:11:07 +0000 (20:11 +0000)]
Additional magic for static linking
pnixon [Tue, 8 Apr 2003 14:23:12 +0000 (14:23 +0000)]
add cisconasport to be stripped for quotes. Stupid Cisco!
pnixon [Tue, 8 Apr 2003 13:07:21 +0000 (13:07 +0000)]
MAJOR changes to DB schema and use of postgresql Stored Procedures!
This breaks backward compatibility but is MUCH faster.
aland [Mon, 7 Apr 2003 16:24:34 +0000 (16:24 +0000)]
For unknown attributes, print vendor name, too.
aland [Mon, 7 Apr 2003 16:17:32 +0000 (16:17 +0000)]
Removed even more code from the SQL module & headers.
Replace a complex 'get free socket' method with what should be
a simpler method.
aland [Mon, 7 Apr 2003 15:48:35 +0000 (15:48 +0000)]
Added -lm
kkalev [Sun, 6 Apr 2003 13:55:34 +0000 (13:55 +0000)]
Update the README file with notes about the scripts present in the bin folder
kkalev [Sun, 6 Apr 2003 13:49:54 +0000 (13:49 +0000)]
Fix a problem with user_stats.php3
aland [Fri, 4 Apr 2003 20:06:39 +0000 (20:06 +0000)]
Be a little more careful when parsing EAP packets.
Untested, so there may be issues.
aland [Fri, 4 Apr 2003 20:06:12 +0000 (20:06 +0000)]
Do a bit more sanity checking for invalid packets
Untested...
aland [Thu, 3 Apr 2003 17:15:27 +0000 (17:15 +0000)]
More documentation on how module configuration works, because
it's unreasonable to ask people to root through the code to
figure it out.
kkalev [Thu, 3 Apr 2003 14:18:05 +0000 (14:18 +0000)]
Change the way we check for ip address matching
aland [Wed, 2 Apr 2003 17:18:42 +0000 (17:18 +0000)]
Removed extraneous 's'
pnixon [Wed, 2 Apr 2003 10:24:44 +0000 (10:24 +0000)]
Log null values as 0 in sql
pnixon [Wed, 2 Apr 2003 09:57:42 +0000 (09:57 +0000)]
Change indexes to speed up imports and queries
aland [Tue, 1 Apr 2003 20:40:01 +0000 (20:40 +0000)]
Moved from semaphores to pthread mutexes & conditionals.
This should make the code a bit more portable.
aland [Tue, 1 Apr 2003 19:30:52 +0000 (19:30 +0000)]
Clean up the 'try to connect' code.
Patch from Malcolm Caldwell
aland [Tue, 1 Apr 2003 19:26:13 +0000 (19:26 +0000)]
Allow SQL-User-Name to be used in sql xlats
Patch from Malcolm Caldwell
aland [Tue, 1 Apr 2003 19:23:49 +0000 (19:23 +0000)]
Do xlat on sql trace file, so that we can create time-specific
trace files, which aid in debugging.
Based on a patch from Malcolm Caldwell
aland [Tue, 1 Apr 2003 19:15:43 +0000 (19:15 +0000)]
increase logging o that when an error is encountered,
the offending sql is logged, too.
Patch from Malcolm Caldwell
aland [Tue, 1 Apr 2003 19:12:42 +0000 (19:12 +0000)]
If no log file is set, dump text to stdout.
kkalev [Tue, 1 Apr 2003 12:41:19 +0000 (12:41 +0000)]
Run in authorize and postauth sections also
kkalev [Tue, 1 Apr 2003 11:23:14 +0000 (11:23 +0000)]
If notfound-reject is set to yes only reject the request if we don't find the item-name
in the request AND we have a check-name in config_items
aland [Mon, 31 Mar 2003 20:38:55 +0000 (20:38 +0000)]
Always allocate at least one byte of data.
If there's nothing to copy, don't copy anything.
aland [Mon, 31 Mar 2003 18:36:40 +0000 (18:36 +0000)]
Added note about shared secret being incorrect, if the
signature or Message-Authenticator is invalid.
aland [Mon, 31 Mar 2003 18:32:02 +0000 (18:32 +0000)]
Added note about LEAP & MS-CHAP
aland [Mon, 31 Mar 2003 16:50:54 +0000 (16:50 +0000)]
More comments, made more modules built-in by default
aland [Fri, 28 Mar 2003 20:45:49 +0000 (20:45 +0000)]
Cosmetic changes
aland [Fri, 28 Mar 2003 18:22:47 +0000 (18:22 +0000)]
Enforce SMB-Account-Ctrl attribute, too
aland [Fri, 28 Mar 2003 16:56:07 +0000 (16:56 +0000)]
Added some simple tests, so that we won't forget to test the server
aland [Fri, 28 Mar 2003 16:29:29 +0000 (16:29 +0000)]
Don't dereference a NULL ptr
pnixon [Fri, 28 Mar 2003 13:06:14 +0000 (13:06 +0000)]
New table 'isdn_error_codes'. Taken from cisco.com this data can be JOINED against h323DisconnectCause to give human readable error reports.
kkalev [Fri, 28 Mar 2003 08:50:20 +0000 (08:50 +0000)]
Remove the caching code. The relevant library code does not exist anymore
in openldap versions > 2.1
Based on a report from Mike Denka <mdenk@whidbey.net>
aland [Thu, 27 Mar 2003 21:29:38 +0000 (21:29 +0000)]
Corrected typo
aland [Wed, 26 Mar 2003 22:58:09 +0000 (22:58 +0000)]
smbpass.c is no longer needed by smbencrypt
aland [Wed, 26 Mar 2003 22:51:59 +0000 (22:51 +0000)]
Removed a fair amount of code dealing with SMB password files.
The 'rlm_passwd' module should be used instead.
The 'authorize' section now does little more than decide to
use MS-CHAP for authentication. This should stop the majority
of the problems with the module.
The 'authentication' section now does just MS-CHAPv1, or MS-CHAPv2
authentication (with MPPE keys)
The SMB account control support has been deleted, but will be
re-added in a day or two.
MS-CHAP authentication works, and the keys appear to be correct.
Also added a large number of debugging messages, which should
make it clear to anyone what's going on, and why.
aland [Wed, 26 Mar 2003 22:12:38 +0000 (22:12 +0000)]
Print out attributes BEFORE we encrypt their contents
Pass the 'original' vector to pwdecode, rather than the request
vector. This allows MS-CHAP-MPPE-Keys to work...
aland [Wed, 26 Mar 2003 21:32:52 +0000 (21:32 +0000)]
Only do 'vp->length = strlen(password)' if the attribute is
User-Password. This was breaking the MS-CHAP-MPPE-Keys encoding.
aland [Wed, 26 Mar 2003 21:29:02 +0000 (21:29 +0000)]
Quiet compiler warnings
aland [Wed, 26 Mar 2003 21:16:51 +0000 (21:16 +0000)]
Made it a little more robust...
aland [Wed, 26 Mar 2003 20:06:15 +0000 (20:06 +0000)]
Allow NT-Password to be used, too
aland [Wed, 26 Mar 2003 19:46:11 +0000 (19:46 +0000)]
Added dictionary, posted to the list by Arnaud G
aland [Wed, 26 Mar 2003 16:48:47 +0000 (16:48 +0000)]
Minor cleanups & re-arrangements
aland [Wed, 26 Mar 2003 16:24:34 +0000 (16:24 +0000)]
If there is no Framed-Netmask in the reply, then add one,
based on the netmask of the IP pool
aland [Wed, 26 Mar 2003 16:18:24 +0000 (16:18 +0000)]
www.freeradius.org/rfc/rfc2869.html#EAP-Message
RFC 2869, Section 5.13 says that any packet containing
EAP-Message, but no Message-Authenticator is to be silently dropped.
We can't quite do that here, but we can at least ignore it...
3APA3A [Wed, 26 Mar 2003 15:53:33 +0000 (15:53 +0000)]
! in default configuration mschap is moved to the end of authorize{} list
pnixon [Wed, 26 Mar 2003 15:21:03 +0000 (15:21 +0000)]
Speed increases