MySQL Collation and Multiple Login Possibility Help
Alan DeKok
aland at deployingradius.com
Mon Jul 11 13:02:49 CEST 2011
Deepak wrote:
> Today by accident, I found out that multiple login is possible for the
> same account.
> Although Attribute (User-Password) is treated case-sensitive,
> 'username' is not during authentication.
...
> It seems like it has more to do with MySQL query. Quick googling
> revealed that query needs explicit COLLATE command to make the search
> case-sensitive for non-binary text.
>
> http://dev.mysql.com/doc/refman/5.0/en/case-sensitivity.html
>
> But I don't know where in FR i can modify this query.
raddb/sql/mysql/dialup.conf
> Can somebody show me the right direction?
>
> I am not sure if this has been fixed for newer FR versions.
Nope.
In 2.1.10, uou can also put this in raddb/sites-enabled/default, at
the top of the "authorize" section:
authorize {
# force the user name to be all lower-case.
if (User-Name != "%{tolower:%{User-Name}}") {
reject
}
...
}
Alan DeKok.
More information about the Freeradius-Users
mailing list