--- Forwarded mail from [EMAIL PROTECTED]
Date: Fri, 27 Oct 2000 19:40:13 +1000 (EST)
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: BOUNCE [EMAIL PROTECTED]: Non-member submission from [Peter
Srivaree-Ratana <[EMAIL PROTECTED]>]
>From mikem Fri Oct 27 19:40:09 2000
Received: by oscar.open.com.au (8.9.0/8.9.0) id TAA01493
for [EMAIL PROTECTED]; Fri, 27 Oct 2000 19:40:09 +1000 (EST)
>Received: from web119.yahoomail.com (web119.mail.yahoo.com [205.180.60.120])
by perki.connect.com.au with SMTP id UAA28356
(8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Fri, 27 Oct 2000 20:35:50 +1100
(EST)
Received: from web119.yahoomail.com (web119.mail.yahoo.com [205.180.60.120]) by
perki.connect.com.au with SMTP id UAA28356
(8.8.8/IDA-1.7 for <[EMAIL PROTECTED]>); Fri, 27 Oct 2000 20:35:50 +1100
(EST)
Received: (qmail 11830 invoked by uid 60001); 27 Oct 2000 09:35:48 -0000
Received: from [203.106.83.152] by web119.yahoomail.com; Fri, 27 Oct 2000
02:35:48 PDT
Message-ID: <[EMAIL PROTECTED]>
Date: Fri, 27 Oct 2000 02:35:48 -0700 (PDT)
From: Peter Srivaree-Ratana <[EMAIL PROTECTED]>
Subject: Radiator 2.16.1->2.16.3 authentication
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Hi,
I have this problem at the customer's site. Our model
is supposed to work with LDAP but for testing purposes
I use AuthBy UNIX as the method, here is my
radius.cfg:
Foreground
LogStdout
LogDir /var/log/radius
DbDir /usr/local/etc
Trace 4
<Client DEFAULT>
Secret wiwiwiwi
DupInterval 0
</Client>
<Client localhost>
Secret mysecret
</Client>
<Realm DEFAULT>
RewriteUsername s/^([^@]+).*/$1/
PasswordLogFileName
/usr/local/etc/passwd.log
<AuthBy UNIX>
Filename /etc/passwd
AddToReply Framed-Protocol = PPP,\
Framed-IP-Address = 129.168.33.21, \
Framed-IP-Netmask = 255.255.255.255,\
Framed-Routing = None,\
Framed-MTU = 1500,\
Framed-Compression = Van-Jacobson-TCP-IP
</AuthBy>
AcctLogFileName ./detail
</Realm>
As you see from the cfg file, I turn on the Password
Log file to check whether the RAS could talk to the
radiator. Here is that password file content:
Fri Oct 27 17:04:31
2000:972637471:abc123:abc123:x:FAIL
Fri Oct 27 17:07:23 2000:972637643:abc123:1212:x:FAIL
Fri Oct 27 17:08:34
2000:972637714:abc123:abc123:x:FAIL
Fri Oct 27 17:10:17
2000:972637817:abc123:abc123:x:FAIL
Fri Oct 27 17:14:57
2000:972638097:abc123:abc123:x:FAIL
The correct password for abc123 is abc123. Also the
first 2 lines I use radpwtst -secret wiwiwiwi -user
[EMAIL PROTECTED] -pass abc123 .. The last 3 I use
another computer with a modem to dial up to RAS.
The following is the output from the logfile when the
connection is rejected:
Code: Access-Request
Identifier: 43
Authentic: 1234567890123456
Attributes:
User-Name = "abc123"
Service-Type = Framed-User
NAS-IP-Address = xxxxx
NAS-Port = 1234
NAS-Port-Type = Async
User-Password =
"<152><233><<156><157>o<4><246><188>8<9><160><216>}x<153>"
Fri Oct 27 17:32:28 2000: DEBUG: Handling request with
Handler 'Realm=DEFAULT'
Fri Oct 27 17:32:28 2000: DEBUG: Rewrote user name to
abc123
Fri Oct 27 17:32:29 2000: DEBUG: Deleting session for
abc123, 203.63.154.1, 1234
Fri Oct 27 17:32:29 2000: DEBUG: Handling with
Radius::AuthUNIX
Fri Oct 27 17:32:29 2000: DEBUG: Radius::AuthUNIX
looks for match with abc123
Fri Oct 27 17:32:29 2000: DEBUG: Radius::AuthUNIX
REJECT: Bad Encrypted password
Fri Oct 27 17:32:29 2000: INFO: Access rejected for
abc123: Bad Encrypted password
Fri Oct 27 17:32:29 2000: DEBUG: Packet dump:
I've made sure the secret key is correct, since you
could see the password from the password log file.
And what I notice is that when I use "radpwtst", the
first authentication usually fails. Then the second
authentication would pass. That's why "radpwtst"
passes and the RAS couldn't.
Any suggestions would be appreciated.
Thanks,
Peter
=====
P. Srivaree-Ratana
__________________________________________________
Do You Yahoo!?
Yahoo! Messenger - Talk while you surf! It's FREE.
http://im.yahoo.com/
---End of forwarded mail from [EMAIL PROTECTED]
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
