same username with different password mysql chap

Alan DeKok aland at deployingradius.com
Fri Mar 11 07:49:34 CET 2011


Brent Wilkinson wrote:
> I am apparently using a old guide.  Made the updates to this. Still
> expierencing same issue
> 
> +-----+----------+--------------------+----+--------+-------+------------+
> | id  | username | attribute          | op | value  | PID   | expires    |
> +-----+----------+--------------------+----+--------+-------+------------+
> | 462 | 10295    | Cleartext-Password | := | 912547 | 10295 | 2011-03-21 |
> | 463 | 10295    | Cleartext-Password | := | 659320 | 10295 | 2011-03-21 |
> | 464 | 10295    | Cleartext-Password | := | 322438 | 10295 | 2011-03-28 |

  This is very wrong.  A user has one password, and only one password.

> Delaying reject of request 1 for 1 seconds
> Going to the next request
> Waking up in 0.9 seconds.
> rad_recv: Access-Request packet from host 192.168.99.175 port 35587, id=59,
> length=216
> Waiting to send Access-Reject to client hotspot port 35587 - ID: 59
> Waking up in 0.6 seconds.
> rad_recv: Access-Request packet from host 192.168.99.175 port 35587, id=59,
> length=216
> Waiting to send Access-Reject to client hotspot port 35587 - ID: 59
> Waking up in 0.3 seconds.

  And this is very wrong, too.  The RADIUS client shouldn't send another
2 retransmissions in the same second.  It's broken, and needs to be
fixed before it's usable in a real-world environment.

  Alan DeKok.



More information about the Freeradius-Users mailing list