--- Forwarded mail from [EMAIL PROTECTED]
Date: Mon, 5 Jun 2000 11:10:16 +1000 (EST)
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: BOUNCE [EMAIL PROTECTED]: Non-member submission from ["Alexey A.
Shavaldin" <[EMAIL PROTECTED]>]
>From mikem Mon Jun 5 11:10:12 2000
Received: by oscar.open.com.au (8.9.0/8.9.0) id LAA07985
for [EMAIL PROTECTED]; Mon, 5 Jun 2000 11:10:11 +1000 (EST)
>Received: from office.ales.kraft-s.ru (office.ales.kraft-s.ru
[195.128.153.136]) by perki.connect.com.au with ESMTP id KAA01088
(8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Mon, 5 Jun 2000 10:43:08 +1000
(EST)
Received: from office.ales.kraft-s.ru (office.ales.kraft-s.ru
[195.128.153.136]) by perki.connect.com.au with ESMTP id KAA01088
(8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Mon, 5 Jun 2000 10:43:08 +1000
(EST)
Received: from localhost (localhost [[UNIX: localhost]])
by office.ales.kraft-s.ru (8.9.3/8.9.3) id FAA29788
for [EMAIL PROTECTED]; Mon, 5 Jun 2000 05:44:50 +0500
From: "Alexey A. Shavaldin" <[EMAIL PROTECTED]>
Organization: Kraft-S, LTD
To: [EMAIL PROTECTED]
Subject: Big problem with Radiator 2.15
Date: Mon, 5 Jun 2000 05:24:10 +0500
X-Mailer: KMail [version 1.0.28]
MIME-Version: 1.0
Message-Id: <[EMAIL PROTECTED]>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
Hello !
I have occured a big problem with Radiator 2.15. It was purchased by Kraft-S,
JSC. Before all the questions concerning Radiator were solved by Dmitry
Niqiforoff, but now he is working at another place.
The fact is that everything worked OK for several months without no errors.
Today's night we have experienced a problem with such diagnostics: radiator
sends SQL requests using authentication by MySQL to a MySQL database and then
sleeps and seems not to react at all at other requests. The fact is that I
don't know what Radiator gets from MySQL server and what it sends to it. Here
is a part of my radiator.log logfile:
Mon Jun 5 05:20:34 2000: DEBUG: Rewrote user name to asy
Mon Jun 5 05:20:34 2000: DEBUG: Rewrote user name to asy
Mon Jun 5 05:20:34 2000: DEBUG: Rewrote user name to asy
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler
NAS-IP-Address=/195.128.153.227|195.128.153.234/, Acct-Status-Type=Alive should
be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler User-Name=/^(?=testuser)/,
Realm=/(?!^)/, Acct-Status-Type= should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Realm=samara.ru,
Acct-Status-Type= should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Realm=samara.ru,
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Called-Station-Id=88,
Acct-Status-Type=
should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Called-Station-Id=88,
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler
Service-Type=Annex-Authorize-Only, NAS-IP-Address=195.128.153.229 should be
used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Class=10000,
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Class=20000,
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler Class=20001,
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler
Acct-Status-Type=/^Start|^Stop/ should be used to handle this request
Mon Jun 5 05:20:34 2000: DEBUG: Check if Handler should be used to handle
this request
Mon Jun 5 05:20:34 2000: DEBUG: Handling request with Handler ''
Mon Jun 5 05:20:34 2000: DEBUG: Special Deleting session for asy,
203.63.154.1, 1234
Mon Jun 5 05:20:34 2000: DEBUG: do query is: delete from RADONLINE where
USERNAME= "asy"
and NASIDENTIFIER="203.63.154.1" and NASPORT=ifnull("1234",0)
Mon Jun 5 05:20:34 2000: DEBUG: Handling with Radius::AuthSQL
Mon Jun 5 05:20:34 2000: DEBUG: Handling with Radius::AuthSQL
Mon Jun 5 05:20:34 2000: DEBUG: Query is: select straight_join
sql_small_result high_priority distinctrow passwd.passwd,
ifnull(ifnull(useritems.simult,realmitems.simult),groupitems.simult) as simult,
ifnull(ifnull(useritems.time,realmitems.time),groupitems.time) as time,
date_format(ifnull(useritems.expiration,groupitems.expiration),'%b %e %Y %T')
as expiration, useritems.ipaddress as ipaddress,
ifnull(ifnull(useritems.filterid,realmitems.filterid),groupitems.filterid) as
filterid,
if(passwd.gid!=10000,ifnull(ifnull(useritems.sessiontimeout,realmitems.sessiontimeout),groupitems.sessiontimeout),passwd.timebank)
as sessiontimeout,
ifnull(ifnull(useritems.idletimeout,realmitems.idletimeout),groupitems.idletimeout)
as idletimeout, ifnull(useritems.loginservice,groupitems.loginservice) as
loginservice, ifnull(ifnull(useritems.servicetype,groupitems.servicetype),
"Framed-User") as servicetype, ifnull(groupitems.framedprotocol, "PPP") as
framedprotocol, groupitems.framedcompression!
as framedcompression, ifnull(groupitems.framedmtu, "1500") as framedmtu,
"Framed-IP-Netmask = 255.255.255.255" as framedipnetmask, passwd.gid as class,
ifnull(if(locate("203.63.154.1",realmitems.naslist)>0,"203.63.154.1",null),
if(locate("203.63.154.1",groupitems.naslist)>0,"203.63.154.1",
if(groupitems.naslist is null,null,"noaccess"))),
ifnull(realmitems.checkextra,groupitems.checkextra),ifnull(realmitems.replyextra,groupitems.replyextra),
if(passwd.gid=10000, if(locate("@", "asy")>1, "Reject", null), null),
if("asy"="testuser", 0, null) from passwd left join useritems on
useritems.username="asy" left join groupitems on groupitems.gid=passwd.gid,
realmitems where passwd.username="asy" and passwd.dialaccess
and realmitems.realm = if(strcmp("asy",substring_index("asy","@",
-1)),substring_index("asy","@", -1), "")
Mon Jun 5 05:20:34 2000: DEBUG: Radius::AuthSQL looks for match with asy
At this point it stays silent and logging stops.
The fact is that MySQL server correctly takes all requests, but why does
Radiator stay silent ?
Radiator just looks for match with username from the password database and
doesn't seem to do anything at all.
It's a fun, but we had no problems with it at all, and nothing was changed in
the databases and in Radiator config files.
We'll appreciate any help.
Thanks a lot for your answer.
With regards,
Alexey A. Shavaldin [EMAIL PROTECTED]
P.S. I've used radpwtst program in order to test connection to database. If I
enter not existing (in MySQL database) username it returns "Bad authenticator".
After that I enter existing username, it returns "No reply", after that I again
enter not existing username and at this time get "No reply" (instead of "Bad
authenticator"). At this point it takes me to a thought that Radiator just
hangs after receiving correct name from MySQL database.
[root@auth1 ales]# /usr/bin/radpwtst -user asya -password ******* -dictionary
/etc/raddb/radiator/dictionary
sending Access-Request...
Bad authenticator
sending Accounting-Request Start...
No reply
sending Accounting-Request Stop...
No reply
[root@auth1 ales]# /usr/bin/radpwtst -user asy -password ********* -dictionary
/etc/raddb/radiator/dictionary
sending Access-Request...
No reply
sending Accounting-Request Start...
No reply
sending Accounting-Request Stop...
No reply
[root@auth1 ales]# /usr/bin/radpwtst -user asya -password ******** -dictionary
/etc/raddb/radiator/dictionary
sending Access-Request...
No reply
sending Accounting-Request Start...
No reply
sending Accounting-Request Stop...
No reply
How can I get to know what MySQL and Radiator send/receive in each case?
---End of forwarded mail from [EMAIL PROTECTED]
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
2000, NT, MacOS X
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
