aland [Wed, 19 Jan 2005 00:53:34 +0000 (00:53 +0000)]
Pull patch from the head
phampson [Thu, 30 Dec 2004 00:19:52 +0000 (00:19 +0000)]
Record that we no longer try and access static auth_port from outside
mainconfig.c
phampson [Thu, 30 Dec 2004 00:18:14 +0000 (00:18 +0000)]
non-struct-contained-auth_port is only used in mainconfig.c, where it is
declared static
phampson [Wed, 29 Dec 2004 23:08:42 +0000 (23:08 +0000)]
Steal patch from CVS Head 1.140 for post-auth REJECT processing.
Thanks to Nicolas Baradakis for the patch.
phampson [Wed, 29 Dec 2004 09:16:43 +0000 (09:16 +0000)]
Debian updates stolen from CVS HEAD
phampson [Wed, 29 Dec 2004 09:02:56 +0000 (09:02 +0000)]
Convert lonely tab into spaces
aland [Sun, 19 Dec 2004 20:12:20 +0000 (20:12 +0000)]
Note recent changes
aland [Sun, 19 Dec 2004 20:11:54 +0000 (20:11 +0000)]
Stir the random pool after getting a packet vector
aland [Sun, 19 Dec 2004 20:06:30 +0000 (20:06 +0000)]
Don't declare zero-length arrays
phampson [Sun, 19 Dec 2004 04:47:54 +0000 (04:47 +0000)]
1.0.2 Debian updates
phampson [Sun, 19 Dec 2004 03:22:02 +0000 (03:22 +0000)]
Log other 1.0.1 -> 1.0.2 changes
phampson [Sun, 19 Dec 2004 00:47:43 +0000 (00:47 +0000)]
Pull from CVS head:
Change big-endian detection to use the autoconf-defined macro, not the
sometimes locally defined macro.
phampson [Sun, 19 Dec 2004 00:46:44 +0000 (00:46 +0000)]
Rerun autoconf2.13 and autoheader2.13 after adding AC_C_BIGENDIAN macro
to configure.in
phampson [Sun, 19 Dec 2004 00:45:21 +0000 (00:45 +0000)]
Add AC_C_BIGENDIAN macro to define WORDS_BIGENDIAN as appropriate
aland [Thu, 16 Dec 2004 18:54:57 +0000 (18:54 +0000)]
pull patches from the head
aland [Wed, 8 Dec 2004 17:20:59 +0000 (17:20 +0000)]
Pull fix from the head
aland [Fri, 3 Dec 2004 18:43:32 +0000 (18:43 +0000)]
Pull diff -r1.84 -r1.85 from the head
aland [Thu, 11 Nov 2004 01:21:10 +0000 (01:21 +0000)]
Move patch from the HEAD
Don't get excited if a section isn't name "redundant", "group", etc.
This allows modules to be "sections", and to have data in them
like "notfound = 1", which makes configurable failover work.
aland [Wed, 10 Nov 2004 17:48:34 +0000 (17:48 +0000)]
Pull diff for revision 1.16-1.17 from the head.
Install radeapclient via libtool, too.
aland [Wed, 3 Nov 2004 17:28:25 +0000 (17:28 +0000)]
Pull patch from the head. This fixes bug #144
aland [Wed, 20 Oct 2004 17:14:38 +0000 (17:14 +0000)]
Pull diff -r1.61 -r1.62 from the HEAD
pnixon [Thu, 7 Oct 2004 20:52:30 +0000 (20:52 +0000)]
Support Quintum VSA's in the same manner as Cisco VSA's (They are compatible)
aland [Tue, 5 Oct 2004 14:41:41 +0000 (14:41 +0000)]
Don't set Auth-Type = LDAP if the request has no clear-text password.
aland [Mon, 4 Oct 2004 15:26:46 +0000 (15:26 +0000)]
Pull fix from the head
aland [Thu, 30 Sep 2004 15:39:41 +0000 (15:39 +0000)]
We're going to be 1.0.2
aland [Thu, 30 Sep 2004 14:54:22 +0000 (14:54 +0000)]
Pull diff -r1.133 -r1.134 from the HEAD
aland [Thu, 30 Sep 2004 14:49:55 +0000 (14:49 +0000)]
Pull udpfromto fix from the HEAD
aland [Wed, 29 Sep 2004 16:09:25 +0000 (16:09 +0000)]
Pull fix for pool initialization from the head
aland [Wed, 29 Sep 2004 16:08:17 +0000 (16:08 +0000)]
Pull 1.24 fix from the head
aland [Tue, 21 Sep 2004 14:32:02 +0000 (14:32 +0000)]
Include revisions 1.61 && r.62 into rlm_mschap.c, but not
1.60 (new %{mschap:NT-Hash})
phampson [Tue, 14 Sep 2004 12:29:06 +0000 (12:29 +0000)]
Autoconf2.13-regenerated for
Release 1.0.1
phampson [Tue, 14 Sep 2004 12:21:14 +0000 (12:21 +0000)]
Release 1.0.1
aland [Fri, 10 Sep 2004 15:06:44 +0000 (15:06 +0000)]
Pull fix from the head
aland [Fri, 10 Sep 2004 14:51:48 +0000 (14:51 +0000)]
Pull patch from the head
aland [Thu, 9 Sep 2004 14:31:06 +0000 (14:31 +0000)]
Pull regex fix from the head
phampson [Thu, 2 Sep 2004 10:57:00 +0000 (10:57 +0000)]
Prepare the debian/ directory for 1.0.1 release.
phampson [Thu, 2 Sep 2004 10:52:03 +0000 (10:52 +0000)]
Updated with 1.0.1 fixes
aland [Wed, 1 Sep 2004 19:30:48 +0000 (19:30 +0000)]
Pull fix from the head
aland [Mon, 30 Aug 2004 19:07:18 +0000 (19:07 +0000)]
Pull fix from the HEAD
aland [Mon, 30 Aug 2004 17:58:09 +0000 (17:58 +0000)]
It's now 1.0.1-pre0
aland [Mon, 30 Aug 2004 17:56:18 +0000 (17:56 +0000)]
Pull fixes from the HEAD
aland [Mon, 30 Aug 2004 17:49:45 +0000 (17:49 +0000)]
Pull fixes from the HEAD
aland [Mon, 30 Aug 2004 17:48:31 +0000 (17:48 +0000)]
Pull fixes 1.126, 1.127, 1.128 from HEAD
aland [Mon, 30 Aug 2004 15:34:34 +0000 (15:34 +0000)]
Corrected typo, as found by Kostas Zorbadelos.
pnixon [Sat, 28 Aug 2004 10:32:32 +0000 (10:32 +0000)]
nasty bug that causes new files created by logrotate to have the wrong permissions if radiusd runs as anything but the root user
pnixon [Sat, 28 Aug 2004 10:26:45 +0000 (10:26 +0000)]
nasty bug that causes new files created by logrotate to have the wrong permissions if radiusd runs as anything by the root user
aland [Fri, 27 Aug 2004 21:38:59 +0000 (21:38 +0000)]
When returning after failed to decrypt attributes, free the pair
we just allocated.
This fixes a memory leak.
aland [Fri, 27 Aug 2004 21:21:37 +0000 (21:21 +0000)]
After running valgrind to get errors, clean up the source, and
discover problems with the dictionaries (sigh)
dict.c now allows duplicate VALUE definitions, so long as both the
name and value are the same. If they differ, it complains.
Given the new complaints, we've also updated the dictionaries.
aland [Fri, 27 Aug 2004 20:30:05 +0000 (20:30 +0000)]
Cleanup request list, if asked
aland [Fri, 27 Aug 2004 18:56:55 +0000 (18:56 +0000)]
Include commented-out code which can be used to debug memory usage
and allocation
aland [Fri, 27 Aug 2004 18:52:28 +0000 (18:52 +0000)]
xlat_free() function, for memory debugging
aland [Fri, 27 Aug 2004 18:46:10 +0000 (18:46 +0000)]
Export dict_free()
When creating the tree of values by name, tell the tree code
that we call "free", to get rid of the entries in it, so we don't
have leaks when calling dict_free()
aland [Fri, 27 Aug 2004 18:22:07 +0000 (18:22 +0000)]
Removed unnecessary xfree, and all references to it
aland [Fri, 27 Aug 2004 15:34:35 +0000 (15:34 +0000)]
Fix compiler warnings.
aland [Thu, 26 Aug 2004 21:43:24 +0000 (21:43 +0000)]
Don't permit retards to enter strange values in the dictionaries
aland [Thu, 26 Aug 2004 21:22:38 +0000 (21:22 +0000)]
USR style attributes have to have at least 8 octets of
vendor data.
Once again, a bug found by a retard.
aland [Thu, 26 Aug 2004 20:52:57 +0000 (20:52 +0000)]
Fix remote crash, as given in a report by a retard who didn't bother
contacting us before publishing vulnerabilities.
He shall remain nameless.
The short summary is that Ascend-Send-Secret, like Tunnel-Password,
requires an "original" packet to decode the attribute. The check
was added for Tunnel-Password, but not Ascend-Send-Secret
aland [Thu, 26 Aug 2004 20:47:50 +0000 (20:47 +0000)]
Add 'test'
aland [Mon, 23 Aug 2004 18:10:05 +0000 (18:10 +0000)]
Updates as posted to the list today
aland [Wed, 18 Aug 2004 20:58:11 +0000 (20:58 +0000)]
If we're printing to a string for xlat's, don't bother escaping
characters, as the user-specified escape function will do that
for us
aland [Wed, 18 Aug 2004 20:31:34 +0000 (20:31 +0000)]
Change include order to get rid of compiler warnings
phampson [Wed, 18 Aug 2004 03:39:26 +0000 (03:39 +0000)]
Gender-neutralise sentence by removing personal pronoun.
phampson [Wed, 18 Aug 2004 03:38:58 +0000 (03:38 +0000)]
Correct manpage section in TH entry.
phampson [Wed, 18 Aug 2004 03:33:15 +0000 (03:33 +0000)]
Regenerate using autoconf 2.59 from configure.in after:
EAP/SIM doesn't depend on OpenSSL. All crypto's done in libeap, and that
all appears to be using SHA1 from libradius anyway.
phampson [Wed, 18 Aug 2004 03:30:09 +0000 (03:30 +0000)]
EAP/SIM doesn't depend on OpenSSL. All crypto's done in libeap, and that
all appears to be using SHA1 from libradius anyway.
aland [Tue, 17 Aug 2004 18:38:44 +0000 (18:38 +0000)]
Don't use bzero
kkalev [Sat, 14 Aug 2004 15:41:50 +0000 (15:41 +0000)]
Move a few header() calls after including config.php3 so that we have access to the relevant
variables.
aland [Fri, 13 Aug 2004 18:33:16 +0000 (18:33 +0000)]
Implemented a module to permit/deny requests based on attributes.
It's different from rlm_attr_filter, in that it doesn't add
attributes to the packet, it just filters requests.
kkalev [Wed, 11 Aug 2004 12:01:35 +0000 (12:01 +0000)]
In rlm_mschap always register the mschap xlat. If we have multiple module
instances then we also register an xlat for each instance.
We add 2 new xlats:
%{mschap: NT-Hash <password>}, %{mschap: LM-Hash <password>}
which returned the corresponding encrypted hash. The rlm_pap module has
been updated to use them in order to also provide support for NT/LM
encryption schemes.
Update radiusd.conf with the 2 new encryption scheme options for rlm_pap
kkalev [Tue, 10 Aug 2004 12:40:05 +0000 (12:40 +0000)]
Move a few paircompare functions for specific attributes from the server core
(src/main/valuepair.c) to the rlm_expr module (we could probably just create
another module, but rlm_expr can do also). That way we keep the server core
as small as possible.
kkalev [Mon, 9 Aug 2004 15:37:46 +0000 (15:37 +0000)]
In user_state also take into account any open sessions when calculating daily/weekly usage.
Add two more lines in the output stating the number of current open sessions and the time used.
kkalev [Mon, 9 Aug 2004 15:31:57 +0000 (15:31 +0000)]
More updates
kkalev [Mon, 9 Aug 2004 15:31:05 +0000 (15:31 +0000)]
Move the Login-Time,Current-Time,Expiration attribute handling to separate
modules, rlm_logintime and rlm_expiration. Move timestr.c to rlm_logintime.
Update makefiles and radiusd.conf
aland [Mon, 9 Aug 2004 13:36:33 +0000 (13:36 +0000)]
Updated debug message, in the hope that a little more text would make
people READ it.
aland [Sun, 8 Aug 2004 18:59:22 +0000 (18:59 +0000)]
Deleted authenticate_query
kkalev [Sat, 31 Jul 2004 07:30:57 +0000 (07:30 +0000)]
Fix operator escaping in lib/sql/change_attrs.php3
kkalev [Sat, 31 Jul 2004 06:57:11 +0000 (06:57 +0000)]
Wrong foreach in show_groups and group_new.
kkalev [Fri, 30 Jul 2004 13:58:15 +0000 (13:58 +0000)]
Add a help screen. The administrator can now also reset the counters.
pnixon [Thu, 29 Jul 2004 15:01:46 +0000 (15:01 +0000)]
Some stupid NASes (Cisco CSPS and Ericsson GGSN to name a couple) do not send AcctSessionTime in Stop packets
pnixon [Thu, 29 Jul 2004 14:32:13 +0000 (14:32 +0000)]
Some stupid NASes (Cisco CSPS and Ericsson GGSN to name a couple) do not send AcctSessionTime in Stop packets
aland [Tue, 27 Jul 2004 22:16:24 +0000 (22:16 +0000)]
fix from the head
aland [Tue, 27 Jul 2004 21:53:00 +0000 (21:53 +0000)]
So says the contact at trapeze
kkalev [Tue, 27 Jul 2004 16:36:15 +0000 (16:36 +0000)]
Update the Authors file
kkalev [Tue, 27 Jul 2004 16:29:25 +0000 (16:29 +0000)]
Use lower cased row names in badusers page
kkalev [Tue, 27 Jul 2004 11:33:41 +0000 (11:33 +0000)]
* Add the style sheet in the content.html
* Enlarge the width for the left frame
* Make show_groups and the drop down menu in group_new work
kkalev [Tue, 27 Jul 2004 04:27:08 +0000 (04:27 +0000)]
Small fix to show_groups.php3
kkalev [Mon, 26 Jul 2004 21:13:06 +0000 (21:13 +0000)]
* Add a drop down menu with existing groups in group_new.php3
* Check for sql in show_groups.php3
* In lib/sql/group_info.php3 if $login is not set, find available groups and place them in
$existing_groups along with a count of users per group. Use the functionality in group_new.php3
and show_groups.php3
* Update TODO
kkalev [Mon, 26 Jul 2004 20:37:38 +0000 (20:37 +0000)]
* A LOT of security related fixes. Now dialupadmin should hopefully be secure enough to
be accessed by normal users (not administrators).
* Move a few elements in the CSS file from the body tag. Suggestion by Gary McKinney
* Update FAQ about using php with no sql support.
* Allow the user to select between viewing FAQ,HOWTO or README in the help page.
* Use $_SERVER instead of $HTTP_SERVER_VARS
kkalev [Fri, 23 Jul 2004 08:29:37 +0000 (08:29 +0000)]
Add nas_table definition. Add readclients directive in postgresql.conf
phampson [Sat, 17 Jul 2004 06:31:03 +0000 (06:31 +0000)]
Release 1.0.0! At last!
phampson [Sat, 17 Jul 2004 06:23:56 +0000 (06:23 +0000)]
Release 1.0.0! At last!
aland [Thu, 15 Jul 2004 15:04:17 +0000 (15:04 +0000)]
We now have a man page
aland [Wed, 14 Jul 2004 21:01:02 +0000 (21:01 +0000)]
Length of match[i] = end - start, not just end.
Patch pulled from the head
mgriego [Wed, 14 Jul 2004 20:55:20 +0000 (20:55 +0000)]
Fixed incorrect offset calculations when creating the %{1}, %{2}... entries.
aland [Tue, 13 Jul 2004 19:48:56 +0000 (19:48 +0000)]
Copy one-line patch from the head
aland [Tue, 13 Jul 2004 19:31:13 +0000 (19:31 +0000)]
Catch bad modules, which pass NULL's to xlat
aland [Tue, 13 Jul 2004 15:48:53 +0000 (15:48 +0000)]
Added support for %{Attribute-Name[*]}
aland [Mon, 12 Jul 2004 18:38:08 +0000 (18:38 +0000)]
Added support for %{Attribute-Name[#]}, which isn't the same
as what the shell uses ($#foo[]), but it still makes sense.
kkalev [Mon, 12 Jul 2004 13:14:39 +0000 (13:14 +0000)]
Fix a small error in lib/sql/find.php3. This closes bug #103
kkalev [Fri, 9 Jul 2004 14:22:13 +0000 (14:22 +0000)]
Set the general_username_mappings_file variable