cparker [Thu, 18 Jul 2002 17:09:18 +0000 (17:09 +0000)]
Ensure that 'Realm' is added to vps in all cases when we find
a matching realm ( even if we handle it locally ). Bug noted
by Chris Brotsos.
aland [Thu, 18 Jul 2002 15:09:16 +0000 (15:09 +0000)]
Updated with pointers to other schemas
Updated with URL for MySQL "best practices" document
aland [Thu, 18 Jul 2002 14:59:51 +0000 (14:59 +0000)]
Corrected typo: "libtdl" != "libltdl"
aland [Thu, 18 Jul 2002 14:50:18 +0000 (14:50 +0000)]
Updated note that the ports are 1812 and 1813, not 1645 and 1646
pam [Thu, 18 Jul 2002 08:22:30 +0000 (08:22 +0000)]
LDAP_USERDN -> PW_LDAP_USERDN, remove unused PW_AUTHTYPE_PAM
pam [Thu, 18 Jul 2002 08:21:20 +0000 (08:21 +0000)]
LDAP_USERDN -> PW_LDAP_USERDN
3APA3A [Thu, 18 Jul 2002 08:18:04 +0000 (08:18 +0000)]
! minor corrections
fcusack [Thu, 18 Jul 2002 06:05:21 +0000 (06:05 +0000)]
use X99_LOG_CRIT when out of memory
aland [Wed, 17 Jul 2002 18:37:07 +0000 (18:37 +0000)]
added 'xlat' function.
aland [Wed, 17 Jul 2002 18:29:13 +0000 (18:29 +0000)]
Fix typos, speling mistakes, and grammer. :)
aland [Wed, 17 Jul 2002 18:20:56 +0000 (18:20 +0000)]
Slight change to the debugging message when no Auth-Type was found.
aland [Wed, 17 Jul 2002 17:46:09 +0000 (17:46 +0000)]
Added documentation on digest module.
aland [Wed, 17 Jul 2002 17:39:48 +0000 (17:39 +0000)]
Added empty config for digest module.
aland [Wed, 17 Jul 2002 17:37:28 +0000 (17:37 +0000)]
Updated copyright
3APA3A [Wed, 17 Jul 2002 17:26:36 +0000 (17:26 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:23:52 +0000 (17:23 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:16:58 +0000 (17:16 +0000)]
*** empty log message ***
3APA3A [Wed, 17 Jul 2002 17:13:27 +0000 (17:13 +0000)]
+ added rlm_passwd documentation
+ added few Q&As to rlm_mschap
3APA3A [Wed, 17 Jul 2002 16:07:51 +0000 (16:07 +0000)]
! information related to rlm_passwd updated
3APA3A [Wed, 17 Jul 2002 15:52:15 +0000 (15:52 +0000)]
+ support for 'delimiter' configuration option
aland [Wed, 17 Jul 2002 15:27:06 +0000 (15:27 +0000)]
Minor english/typo changes
3APA3A [Wed, 17 Jul 2002 14:45:03 +0000 (14:45 +0000)]
! cosmetic changes
3APA3A [Wed, 17 Jul 2002 14:38:58 +0000 (14:38 +0000)]
rlm_mschap documentation added
aland [Wed, 17 Jul 2002 14:25:24 +0000 (14:25 +0000)]
Added more simple text to help people get the server up and running.
aland [Tue, 16 Jul 2002 18:42:00 +0000 (18:42 +0000)]
Updated to match latest changes.
Patch from Ilguiz Latypov
aland [Tue, 16 Jul 2002 18:40:44 +0000 (18:40 +0000)]
Updated prototype to match function def.
Bug noted by Ilguiz Latypov
aland [Tue, 16 Jul 2002 17:39:30 +0000 (17:39 +0000)]
Added PAP, CHAP, LDAP, etc. Auth-Type's to the default dictionary.
aland [Tue, 16 Jul 2002 17:32:18 +0000 (17:32 +0000)]
Don't free vp when there's an error in pair parse value.
Rely on the caller to do it, instead.
aland [Tue, 16 Jul 2002 16:30:59 +0000 (16:30 +0000)]
Make certain strings 'const'
If there was no Pool-Name attribute found, return NOOP.
Patch from Pierluigi Frullani
aland [Tue, 16 Jul 2002 16:23:12 +0000 (16:23 +0000)]
Last set of changes to make sem_init and friends be found properly
aland [Mon, 15 Jul 2002 20:18:26 +0000 (20:18 +0000)]
Btter changes which should fix the stupid autoconf crap
aland [Mon, 15 Jul 2002 19:59:15 +0000 (19:59 +0000)]
Link only the modules defined in the top-level Make.inc, so
experimental and non-working modules don't break the build.
aland [Mon, 15 Jul 2002 18:25:36 +0000 (18:25 +0000)]
Check for header files in configure script, and add new header
file to hold HAVE_FOO definitions.
It doesn't hurt to check for more header files, and include them.
aland [Mon, 15 Jul 2002 17:57:44 +0000 (17:57 +0000)]
'test' takes '=', not '=='
pam [Mon, 15 Jul 2002 12:37:03 +0000 (12:37 +0000)]
Previous commit fixing build on HP/UX broke it for FreeBSD
This should make both happy
aland [Fri, 12 Jul 2002 19:45:34 +0000 (19:45 +0000)]
Don't use <sys/fcntl.h>, use <fcntl.h>
Problem noted by asr@ufl.edu
aland [Fri, 12 Jul 2002 19:44:01 +0000 (19:44 +0000)]
Patches to enable or disable using the supplied libltdl
Changes to configure.in and aclocal.m4 provide three additional
options:
--with-system-libtool
--with-ltdl-lib=DIR
--with-ltdl-include=DIR
which allow the user to override default build settings.
Patches from Adrian Pavlykevych
aland [Fri, 12 Jul 2002 19:36:59 +0000 (19:36 +0000)]
What the heck, look for <fcntl.h> and <sys/fcntl.h>, too.
It doesn't cost anything, and it might help with portability.
fcusack [Fri, 12 Jul 2002 06:45:53 +0000 (06:45 +0000)]
stdio.h
aland [Thu, 11 Jul 2002 21:50:23 +0000 (21:50 +0000)]
Update sample config and documentation for perl module.
Fix code to work a bit better.
install persistent.pl, which is required to get persistence.
aland [Thu, 11 Jul 2002 19:35:46 +0000 (19:35 +0000)]
Added ifdef's around pthread-specific functions.
Patch from Rainer Weikusat
cparker [Thu, 11 Jul 2002 18:25:34 +0000 (18:25 +0000)]
Rename local functions _sql_*() to rlm_sql_*() to look nicer.
raghu [Thu, 11 Jul 2002 17:02:22 +0000 (17:02 +0000)]
Resolved Initialization issues.
cparker [Thu, 11 Jul 2002 16:28:58 +0000 (16:28 +0000)]
SQL Socket Reconnect patch from Todd T. Fries.
MySQL is completed. Other drivers need to be updated to return
SQL_DOWN in the appropriate spots to trigger the reconnect
functionality.
Sybase driver is partially updated to use reconnect when the
DB closes the socket.
Info on what needs to be updated on other drivers can be found
in the rlm_sql/README file.
aland [Thu, 11 Jul 2002 15:28:19 +0000 (15:28 +0000)]
Added ifdef's around use of pthread functions.
Based on a patch from Rainer Weikusat
kkalev [Thu, 11 Jul 2002 14:28:46 +0000 (14:28 +0000)]
Fix a stupid bug when seting the last character of the encrypted password to NULL in
MD5 and SHA1 encryption.
aland [Thu, 11 Jul 2002 14:22:02 +0000 (14:22 +0000)]
Updated to add 'xs_init' into it, with patches from Boian Jordanov
aland [Thu, 11 Jul 2002 13:53:42 +0000 (13:53 +0000)]
Removed 'use_dbm' variable, which is unused anywhere in the code.
fcusack [Thu, 11 Jul 2002 05:14:39 +0000 (05:14 +0000)]
PAM portability
fcusack [Thu, 11 Jul 2002 04:47:50 +0000 (04:47 +0000)]
PAM portability
fcusack [Thu, 11 Jul 2002 04:44:24 +0000 (04:44 +0000)]
errno.h
aland [Wed, 10 Jul 2002 19:51:37 +0000 (19:51 +0000)]
Enabled new dynamic xlat functionality in pair comparison.
aland [Wed, 10 Jul 2002 19:51:10 +0000 (19:51 +0000)]
Corrected typo in last commit.
aland [Wed, 10 Jul 2002 19:45:35 +0000 (19:45 +0000)]
new function: pairparsevalue(), which parses a string into
the value field (whatever that is) of a VP, and over-writes
whatever was there before.
pairmake() now allows value to be NULL.
pairread() now looks for `quoted strings`, and sends NULL to
pairmake(), and marks the VP to be xlated later.
aland [Wed, 10 Jul 2002 18:01:06 +0000 (18:01 +0000)]
Added new tokens: bare word, double quoted string, single quoted
string, and '`' quoted string, in preparation for allowing
Attribute-Name == `%{foo:bar}`
to do xlat at comparison time.
aland [Wed, 10 Jul 2002 17:40:25 +0000 (17:40 +0000)]
Updates pre 0.6.1
aland [Wed, 10 Jul 2002 16:21:03 +0000 (16:21 +0000)]
Added sample config for new perl module
aland [Wed, 10 Jul 2002 16:17:46 +0000 (16:17 +0000)]
More files for rlm_perl
aland [Wed, 10 Jul 2002 15:59:22 +0000 (15:59 +0000)]
Latest set of updates, from Andrei Koulik
aland [Wed, 10 Jul 2002 15:53:09 +0000 (15:53 +0000)]
New experimental perl module, from
Boian Iliev Jordanov <bjordanov@orbitel.bg>
aland [Wed, 10 Jul 2002 15:49:40 +0000 (15:49 +0000)]
One more update
aland [Wed, 10 Jul 2002 15:47:58 +0000 (15:47 +0000)]
Minor updates to check headers (includes)
kkalev [Wed, 10 Jul 2002 14:53:51 +0000 (14:53 +0000)]
* If the same attribute appears more than once in the user edit page then show a count of the number of
occurences next to the attribute name
* Add a server argument to user_finger.php3. If it is set then the page will only show the logged in users
in that access server instead of all of them. Update the README with documentation for that fact.
kkalev [Wed, 10 Jul 2002 13:22:09 +0000 (13:22 +0000)]
SHA1 encryption in the pap module is now supported
kkalev [Wed, 10 Jul 2002 12:55:01 +0000 (12:55 +0000)]
Remember to do ldap_release_conn and ldap_msgfree when we do paircmp and the result is reject
fcusack [Wed, 10 Jul 2002 10:18:23 +0000 (10:18 +0000)]
add support for user-specified include and lib paths
fcusack [Wed, 10 Jul 2002 09:28:08 +0000 (09:28 +0000)]
Add test for inttypes.h; fail if not found. This module is
rarely used so I don't care to support old systems.
fcusack [Wed, 10 Jul 2002 08:25:59 +0000 (08:25 +0000)]
Don't include libradius' md5.h.
pam [Wed, 10 Jul 2002 07:39:50 +0000 (07:39 +0000)]
Added note about LDAPS connection mode to reflect recent commit to rlm_ldap module
Changes in description of server directive
pam [Wed, 10 Jul 2002 07:17:58 +0000 (07:17 +0000)]
Fix of LDAPS support (LDAP over SSL without TLS negotiation).
Now when LDAP server port is set to 636 (ldaps), SSL connection is enforced.
This feature is useful for LDAP servers which support SSL, but don't do TLS negotiation (like Novell eDirectory).
aland [Tue, 9 Jul 2002 20:50:48 +0000 (20:50 +0000)]
Add rfc2548 (Microsoft VSA's) to the list
aland [Tue, 9 Jul 2002 20:48:49 +0000 (20:48 +0000)]
Add perl scripts to auto-magically convert the RADIUS RFC's
to cross-indexed HTML.
aland [Tue, 9 Jul 2002 20:26:03 +0000 (20:26 +0000)]
Added draft for digest authentication. It's expired, and not a
standard, but Cisco has implemented it, so it should be documented.
aland [Tue, 9 Jul 2002 20:22:48 +0000 (20:22 +0000)]
Added the IETF RADIUS RFC's to the documentation
aland [Tue, 9 Jul 2002 20:07:32 +0000 (20:07 +0000)]
Added example configuration and documentation of rlm_dbm, from
the list archives, because it's too much bother to tell people
where to look themselves.
Plus, having documentation for the module is a Good Thing.
aland [Tue, 9 Jul 2002 19:16:23 +0000 (19:16 +0000)]
Updates to the python module, from migs paraz
aland [Tue, 9 Jul 2002 17:15:39 +0000 (17:15 +0000)]
Experimental code (commented out by default) to allow xlat to be
done on string check items BEFORE they're compared. e.g.:
DEFAULT Auth-Type := Accept, Calling-Station-Id == "%{reply:Callback-Number}"
which would accept the user if a previously-configured
Callback-Number in the reply was the same as the Calling-Station-Id
in the request.
aland [Tue, 9 Jul 2002 17:00:17 +0000 (17:00 +0000)]
Corrected typo
aland [Tue, 9 Jul 2002 16:33:48 +0000 (16:33 +0000)]
When decoding IP addresses, put their string representation into
vp->strvalue, so that regex comparisons on IP addresses can work.
Based on issue noted by David C. Troy
aland [Tue, 9 Jul 2002 16:30:03 +0000 (16:30 +0000)]
Put the string representation (nnn.nnn.nnn.nnn) of the IP address
into vp->strvalue, so that we can do regex comparisons on it later
Based on report from David C. Troy
aland [Tue, 9 Jul 2002 15:32:53 +0000 (15:32 +0000)]
Make the functions specific to libradius, so they don't conflict
with others.
aland [Tue, 9 Jul 2002 15:13:50 +0000 (15:13 +0000)]
Added 'install' target, so libradius.so gets installed, too
fcusack [Tue, 9 Jul 2002 09:59:09 +0000 (09:59 +0000)]
Add a config file check, fix memory leaks that could occur in
failure or rare conditions.
fcusack [Tue, 9 Jul 2002 09:34:10 +0000 (09:34 +0000)]
Add back headers mandated by SUSv2
raghu [Mon, 8 Jul 2002 21:12:04 +0000 (21:12 +0000)]
EAP documentation
aland [Mon, 8 Jul 2002 18:46:07 +0000 (18:46 +0000)]
When rejecting authentication due to external Exec-Program,
do NOT free the reply pairs, as the server core will take care
of doing that.
Bug noted by Thomas Jalsovsky
aland [Mon, 8 Jul 2002 18:34:57 +0000 (18:34 +0000)]
Make Exec-Program and Exec-Program-Wait work in debugging mode.
aland [Mon, 8 Jul 2002 18:34:17 +0000 (18:34 +0000)]
Move definitions outside of ifdef
aland [Mon, 8 Jul 2002 18:23:42 +0000 (18:23 +0000)]
Finalize the radrelay additions, based on Cistron RADIUS
Patches from Simon <lists@routemeister.net>
3APA3A [Mon, 8 Jul 2002 17:59:24 +0000 (17:59 +0000)]
+ rlm_cram is EXPEREMENTAL module for Challenge-Response authentication.
It supports APOP, CRAM-MD5, CRAM-MD4, CRAM-SHA1 with it's own
standard. This module may be used for SMTP/POP3/IMAP4 server
authentication.
Read included documentation on how to use this module.
raghu [Mon, 8 Jul 2002 17:45:46 +0000 (17:45 +0000)]
Take advantage of Configure
raghu [Mon, 8 Jul 2002 17:44:22 +0000 (17:44 +0000)]
EAP can now take advantage of configure scripts
aland [Mon, 8 Jul 2002 15:59:45 +0000 (15:59 +0000)]
Re-write to use libtool, which allows us to build dynamic libraries
The structure of the make file is now more like ../modules/rules.mak,
which makes things clearer
aland [Mon, 8 Jul 2002 15:18:59 +0000 (15:18 +0000)]
Added Cisco SSG VSA's, from
http://www.cisco.com/univercd/cc/td/doc/solution/sesm/sesm_311/instcnfg/appd.htm
pam [Mon, 8 Jul 2002 12:29:17 +0000 (12:29 +0000)]
Backing out removal of "modules.h".
Been overzealous, sorry
pam [Mon, 8 Jul 2002 12:07:59 +0000 (12:07 +0000)]
emoved superficial #include statements
malloc.h is deprecated, using stdlib.h instead
Moved standard includes before ours - fixed warning about redefinition of INADDR_ constants
pam [Mon, 8 Jul 2002 12:05:08 +0000 (12:05 +0000)]
Removed superficial #include statements
malloc.h is deprecated, using stdlib.h instead
fcusack [Sat, 6 Jul 2002 06:24:33 +0000 (06:24 +0000)]
avoid multiple inclusion of md4 and sha1 headers
fcusack [Sat, 6 Jul 2002 06:10:40 +0000 (06:10 +0000)]
remove extraneous includes per Alan
fcusack [Sat, 6 Jul 2002 04:38:38 +0000 (04:38 +0000)]
my autoconf appears to be broken. this looks a little better.