aland [Wed, 17 Jul 2002 14:25:24 +0000 (14:25 +0000)]
Added more simple text to help people get the server up and running.
aland [Tue, 16 Jul 2002 18:42:00 +0000 (18:42 +0000)]
Updated to match latest changes.
Patch from Ilguiz Latypov
aland [Tue, 16 Jul 2002 18:40:44 +0000 (18:40 +0000)]
Updated prototype to match function def.
Bug noted by Ilguiz Latypov
aland [Tue, 16 Jul 2002 17:39:30 +0000 (17:39 +0000)]
Added PAP, CHAP, LDAP, etc. Auth-Type's to the default dictionary.
aland [Tue, 16 Jul 2002 17:32:18 +0000 (17:32 +0000)]
Don't free vp when there's an error in pair parse value.
Rely on the caller to do it, instead.
aland [Tue, 16 Jul 2002 16:30:59 +0000 (16:30 +0000)]
Make certain strings 'const'
If there was no Pool-Name attribute found, return NOOP.
Patch from Pierluigi Frullani
aland [Tue, 16 Jul 2002 16:23:12 +0000 (16:23 +0000)]
Last set of changes to make sem_init and friends be found properly
aland [Mon, 15 Jul 2002 20:18:26 +0000 (20:18 +0000)]
Btter changes which should fix the stupid autoconf crap
aland [Mon, 15 Jul 2002 19:59:15 +0000 (19:59 +0000)]
Link only the modules defined in the top-level Make.inc, so
experimental and non-working modules don't break the build.
aland [Mon, 15 Jul 2002 18:25:36 +0000 (18:25 +0000)]
Check for header files in configure script, and add new header
file to hold HAVE_FOO definitions.
It doesn't hurt to check for more header files, and include them.
aland [Mon, 15 Jul 2002 17:57:44 +0000 (17:57 +0000)]
'test' takes '=', not '=='
pam [Mon, 15 Jul 2002 12:37:03 +0000 (12:37 +0000)]
Previous commit fixing build on HP/UX broke it for FreeBSD
This should make both happy
aland [Fri, 12 Jul 2002 19:45:34 +0000 (19:45 +0000)]
Don't use <sys/fcntl.h>, use <fcntl.h>
Problem noted by asr@ufl.edu
aland [Fri, 12 Jul 2002 19:44:01 +0000 (19:44 +0000)]
Patches to enable or disable using the supplied libltdl
Changes to configure.in and aclocal.m4 provide three additional
options:
--with-system-libtool
--with-ltdl-lib=DIR
--with-ltdl-include=DIR
which allow the user to override default build settings.
Patches from Adrian Pavlykevych
aland [Fri, 12 Jul 2002 19:36:59 +0000 (19:36 +0000)]
What the heck, look for <fcntl.h> and <sys/fcntl.h>, too.
It doesn't cost anything, and it might help with portability.
fcusack [Fri, 12 Jul 2002 06:45:53 +0000 (06:45 +0000)]
stdio.h
aland [Thu, 11 Jul 2002 21:50:23 +0000 (21:50 +0000)]
Update sample config and documentation for perl module.
Fix code to work a bit better.
install persistent.pl, which is required to get persistence.
aland [Thu, 11 Jul 2002 19:35:46 +0000 (19:35 +0000)]
Added ifdef's around pthread-specific functions.
Patch from Rainer Weikusat
cparker [Thu, 11 Jul 2002 18:25:34 +0000 (18:25 +0000)]
Rename local functions _sql_*() to rlm_sql_*() to look nicer.
raghu [Thu, 11 Jul 2002 17:02:22 +0000 (17:02 +0000)]
Resolved Initialization issues.
cparker [Thu, 11 Jul 2002 16:28:58 +0000 (16:28 +0000)]
SQL Socket Reconnect patch from Todd T. Fries.
MySQL is completed. Other drivers need to be updated to return
SQL_DOWN in the appropriate spots to trigger the reconnect
functionality.
Sybase driver is partially updated to use reconnect when the
DB closes the socket.
Info on what needs to be updated on other drivers can be found
in the rlm_sql/README file.
aland [Thu, 11 Jul 2002 15:28:19 +0000 (15:28 +0000)]
Added ifdef's around use of pthread functions.
Based on a patch from Rainer Weikusat
kkalev [Thu, 11 Jul 2002 14:28:46 +0000 (14:28 +0000)]
Fix a stupid bug when seting the last character of the encrypted password to NULL in
MD5 and SHA1 encryption.
aland [Thu, 11 Jul 2002 14:22:02 +0000 (14:22 +0000)]
Updated to add 'xs_init' into it, with patches from Boian Jordanov
aland [Thu, 11 Jul 2002 13:53:42 +0000 (13:53 +0000)]
Removed 'use_dbm' variable, which is unused anywhere in the code.
fcusack [Thu, 11 Jul 2002 05:14:39 +0000 (05:14 +0000)]
PAM portability
fcusack [Thu, 11 Jul 2002 04:47:50 +0000 (04:47 +0000)]
PAM portability
fcusack [Thu, 11 Jul 2002 04:44:24 +0000 (04:44 +0000)]
errno.h
aland [Wed, 10 Jul 2002 19:51:37 +0000 (19:51 +0000)]
Enabled new dynamic xlat functionality in pair comparison.
aland [Wed, 10 Jul 2002 19:51:10 +0000 (19:51 +0000)]
Corrected typo in last commit.
aland [Wed, 10 Jul 2002 19:45:35 +0000 (19:45 +0000)]
new function: pairparsevalue(), which parses a string into
the value field (whatever that is) of a VP, and over-writes
whatever was there before.
pairmake() now allows value to be NULL.
pairread() now looks for `quoted strings`, and sends NULL to
pairmake(), and marks the VP to be xlated later.
aland [Wed, 10 Jul 2002 18:01:06 +0000 (18:01 +0000)]
Added new tokens: bare word, double quoted string, single quoted
string, and '`' quoted string, in preparation for allowing
Attribute-Name == `%{foo:bar}`
to do xlat at comparison time.
aland [Wed, 10 Jul 2002 17:40:25 +0000 (17:40 +0000)]
Updates pre 0.6.1
aland [Wed, 10 Jul 2002 16:21:03 +0000 (16:21 +0000)]
Added sample config for new perl module
aland [Wed, 10 Jul 2002 16:17:46 +0000 (16:17 +0000)]
More files for rlm_perl
aland [Wed, 10 Jul 2002 15:59:22 +0000 (15:59 +0000)]
Latest set of updates, from Andrei Koulik
aland [Wed, 10 Jul 2002 15:53:09 +0000 (15:53 +0000)]
New experimental perl module, from
Boian Iliev Jordanov <bjordanov@orbitel.bg>
aland [Wed, 10 Jul 2002 15:49:40 +0000 (15:49 +0000)]
One more update
aland [Wed, 10 Jul 2002 15:47:58 +0000 (15:47 +0000)]
Minor updates to check headers (includes)
kkalev [Wed, 10 Jul 2002 14:53:51 +0000 (14:53 +0000)]
* If the same attribute appears more than once in the user edit page then show a count of the number of
occurences next to the attribute name
* Add a server argument to user_finger.php3. If it is set then the page will only show the logged in users
in that access server instead of all of them. Update the README with documentation for that fact.
kkalev [Wed, 10 Jul 2002 13:22:09 +0000 (13:22 +0000)]
SHA1 encryption in the pap module is now supported
kkalev [Wed, 10 Jul 2002 12:55:01 +0000 (12:55 +0000)]
Remember to do ldap_release_conn and ldap_msgfree when we do paircmp and the result is reject
fcusack [Wed, 10 Jul 2002 10:18:23 +0000 (10:18 +0000)]
add support for user-specified include and lib paths
fcusack [Wed, 10 Jul 2002 09:28:08 +0000 (09:28 +0000)]
Add test for inttypes.h; fail if not found. This module is
rarely used so I don't care to support old systems.
fcusack [Wed, 10 Jul 2002 08:25:59 +0000 (08:25 +0000)]
Don't include libradius' md5.h.
pam [Wed, 10 Jul 2002 07:39:50 +0000 (07:39 +0000)]
Added note about LDAPS connection mode to reflect recent commit to rlm_ldap module
Changes in description of server directive
pam [Wed, 10 Jul 2002 07:17:58 +0000 (07:17 +0000)]
Fix of LDAPS support (LDAP over SSL without TLS negotiation).
Now when LDAP server port is set to 636 (ldaps), SSL connection is enforced.
This feature is useful for LDAP servers which support SSL, but don't do TLS negotiation (like Novell eDirectory).
aland [Tue, 9 Jul 2002 20:50:48 +0000 (20:50 +0000)]
Add rfc2548 (Microsoft VSA's) to the list
aland [Tue, 9 Jul 2002 20:48:49 +0000 (20:48 +0000)]
Add perl scripts to auto-magically convert the RADIUS RFC's
to cross-indexed HTML.
aland [Tue, 9 Jul 2002 20:26:03 +0000 (20:26 +0000)]
Added draft for digest authentication. It's expired, and not a
standard, but Cisco has implemented it, so it should be documented.
aland [Tue, 9 Jul 2002 20:22:48 +0000 (20:22 +0000)]
Added the IETF RADIUS RFC's to the documentation
aland [Tue, 9 Jul 2002 20:07:32 +0000 (20:07 +0000)]
Added example configuration and documentation of rlm_dbm, from
the list archives, because it's too much bother to tell people
where to look themselves.
Plus, having documentation for the module is a Good Thing.
aland [Tue, 9 Jul 2002 19:16:23 +0000 (19:16 +0000)]
Updates to the python module, from migs paraz
aland [Tue, 9 Jul 2002 17:15:39 +0000 (17:15 +0000)]
Experimental code (commented out by default) to allow xlat to be
done on string check items BEFORE they're compared. e.g.:
DEFAULT Auth-Type := Accept, Calling-Station-Id == "%{reply:Callback-Number}"
which would accept the user if a previously-configured
Callback-Number in the reply was the same as the Calling-Station-Id
in the request.
aland [Tue, 9 Jul 2002 17:00:17 +0000 (17:00 +0000)]
Corrected typo
aland [Tue, 9 Jul 2002 16:33:48 +0000 (16:33 +0000)]
When decoding IP addresses, put their string representation into
vp->strvalue, so that regex comparisons on IP addresses can work.
Based on issue noted by David C. Troy
aland [Tue, 9 Jul 2002 16:30:03 +0000 (16:30 +0000)]
Put the string representation (nnn.nnn.nnn.nnn) of the IP address
into vp->strvalue, so that we can do regex comparisons on it later
Based on report from David C. Troy
aland [Tue, 9 Jul 2002 15:32:53 +0000 (15:32 +0000)]
Make the functions specific to libradius, so they don't conflict
with others.
aland [Tue, 9 Jul 2002 15:13:50 +0000 (15:13 +0000)]
Added 'install' target, so libradius.so gets installed, too
fcusack [Tue, 9 Jul 2002 09:59:09 +0000 (09:59 +0000)]
Add a config file check, fix memory leaks that could occur in
failure or rare conditions.
fcusack [Tue, 9 Jul 2002 09:34:10 +0000 (09:34 +0000)]
Add back headers mandated by SUSv2
raghu [Mon, 8 Jul 2002 21:12:04 +0000 (21:12 +0000)]
EAP documentation
aland [Mon, 8 Jul 2002 18:46:07 +0000 (18:46 +0000)]
When rejecting authentication due to external Exec-Program,
do NOT free the reply pairs, as the server core will take care
of doing that.
Bug noted by Thomas Jalsovsky
aland [Mon, 8 Jul 2002 18:34:57 +0000 (18:34 +0000)]
Make Exec-Program and Exec-Program-Wait work in debugging mode.
aland [Mon, 8 Jul 2002 18:34:17 +0000 (18:34 +0000)]
Move definitions outside of ifdef
aland [Mon, 8 Jul 2002 18:23:42 +0000 (18:23 +0000)]
Finalize the radrelay additions, based on Cistron RADIUS
Patches from Simon <lists@routemeister.net>
3APA3A [Mon, 8 Jul 2002 17:59:24 +0000 (17:59 +0000)]
+ rlm_cram is EXPEREMENTAL module for Challenge-Response authentication.
It supports APOP, CRAM-MD5, CRAM-MD4, CRAM-SHA1 with it's own
standard. This module may be used for SMTP/POP3/IMAP4 server
authentication.
Read included documentation on how to use this module.
raghu [Mon, 8 Jul 2002 17:45:46 +0000 (17:45 +0000)]
Take advantage of Configure
raghu [Mon, 8 Jul 2002 17:44:22 +0000 (17:44 +0000)]
EAP can now take advantage of configure scripts
aland [Mon, 8 Jul 2002 15:59:45 +0000 (15:59 +0000)]
Re-write to use libtool, which allows us to build dynamic libraries
The structure of the make file is now more like ../modules/rules.mak,
which makes things clearer
aland [Mon, 8 Jul 2002 15:18:59 +0000 (15:18 +0000)]
Added Cisco SSG VSA's, from
http://www.cisco.com/univercd/cc/td/doc/solution/sesm/sesm_311/instcnfg/appd.htm
pam [Mon, 8 Jul 2002 12:29:17 +0000 (12:29 +0000)]
Backing out removal of "modules.h".
Been overzealous, sorry
pam [Mon, 8 Jul 2002 12:07:59 +0000 (12:07 +0000)]
emoved superficial #include statements
malloc.h is deprecated, using stdlib.h instead
Moved standard includes before ours - fixed warning about redefinition of INADDR_ constants
pam [Mon, 8 Jul 2002 12:05:08 +0000 (12:05 +0000)]
Removed superficial #include statements
malloc.h is deprecated, using stdlib.h instead
fcusack [Sat, 6 Jul 2002 06:24:33 +0000 (06:24 +0000)]
avoid multiple inclusion of md4 and sha1 headers
fcusack [Sat, 6 Jul 2002 06:10:40 +0000 (06:10 +0000)]
remove extraneous includes per Alan
fcusack [Sat, 6 Jul 2002 04:38:38 +0000 (04:38 +0000)]
my autoconf appears to be broken. this looks a little better.
fcusack [Sat, 6 Jul 2002 02:19:36 +0000 (02:19 +0000)]
update for configure.in#1.158
aland [Fri, 5 Jul 2002 16:16:48 +0000 (16:16 +0000)]
Make libradius-specific MD4 functions and structures
aland [Thu, 4 Jul 2002 15:02:10 +0000 (15:02 +0000)]
Don't include the '\0' in the number of characters put into the
string.
Patch from Michael Bailey
aland [Thu, 4 Jul 2002 14:40:08 +0000 (14:40 +0000)]
If there's an error reading the configuration files, tell the user
where the log file is, so they can find the errors.
aland [Thu, 4 Jul 2002 14:30:58 +0000 (14:30 +0000)]
Added '/', and most importantly, '=' to the list of non-escaped
characters.
The '=' prevents double escaping from occuring.
aland [Thu, 4 Jul 2002 14:26:55 +0000 (14:26 +0000)]
Add proper pre-processor magic to get them to play nicely.
aland [Thu, 4 Jul 2002 14:21:51 +0000 (14:21 +0000)]
Removed GNU specific commands, which broke 'configure' on Linux, too.
aland [Thu, 4 Jul 2002 14:03:25 +0000 (14:03 +0000)]
Now that sha1 and md4 are in 'lib', their header files should be
included, so they will link.
fcusack [Thu, 4 Jul 2002 13:37:43 +0000 (13:37 +0000)]
Link all of libradius.a, not just referenced symbols.
kkalev [Thu, 4 Jul 2002 08:06:36 +0000 (08:06 +0000)]
Check if the last logged in server and client ip are valid before calling gethostbyaddr
kkalev [Wed, 3 Jul 2002 23:05:23 +0000 (23:05 +0000)]
- Try to minimize the penalty of having the ldap server go down. The comments before
MAX_FAILED_CONNS_* definitions should explain things.
- Check for a number of error codes from ldap_search and log corresponding error messages
We should only reconnect when that can help things.
- In ldap_groupcmp instead of first searching for the group object and then checking user
group membership combine them in one ldap search operation. That should make group
membership checks a lot faster.
kkalev [Wed, 3 Jul 2002 22:05:50 +0000 (22:05 +0000)]
Refresh the online users page every 50 secs. Patch by Alexandre Strube <surak@barroco.com.br>
aland [Wed, 3 Jul 2002 14:38:57 +0000 (14:38 +0000)]
change version to 0.7-pre
aland [Wed, 3 Jul 2002 14:16:33 +0000 (14:16 +0000)]
Last set of updates before 0.6
fcusack [Wed, 3 Jul 2002 09:03:47 +0000 (09:03 +0000)]
it's nice when it actually compiles
fcusack [Wed, 3 Jul 2002 08:42:04 +0000 (08:42 +0000)]
PAM portability changes
kkalev [Mon, 1 Jul 2002 08:50:22 +0000 (08:50 +0000)]
Fix the logic when we get an LDAP_SERVER_DOWN or we have conn->ld == NULL in perform_search
fcusack [Wed, 26 Jun 2002 03:37:04 +0000 (03:37 +0000)]
update for new user/group defaults
kkalev [Wed, 26 Jun 2002 00:36:41 +0000 (00:36 +0000)]
Pass the whole password as salt in da_encrypt() in password_check.php3
cparker [Tue, 25 Jun 2002 21:08:50 +0000 (21:08 +0000)]
Updated with recent changes to the server.
cparker [Tue, 25 Jun 2002 20:45:13 +0000 (20:45 +0000)]
Change behaviour so that if user/group are specified in config, the
server will switch to that user/group in all operation modes ( both
debug and daemon ). The config file is updated to have user/group
commented by default, with an updated explanation of this behaviour.
kkalev [Tue, 25 Jun 2002 17:32:41 +0000 (17:32 +0000)]
Declare rlm_pap thread safe
kkalev [Tue, 25 Jun 2002 17:32:17 +0000 (17:32 +0000)]
Add a mutex around crypt so that we can make rlm_pap thread safe