time delay in ntlm_auth?

Matthew Newton mcn4 at leicester.ac.uk
Wed Oct 16 00:08:02 CEST 2013


Hi,

On Tue, Oct 15, 2013 at 05:09:39PM -0400, Alan DeKok wrote:
>   Where "wait_limit" is a small C program.  It would wait 5 seconds, and
> if ntlm_auth didn't return, kill it, and return a failure to radiusd.

I've just sent a pull request that adds an option 'timeout' to
rlm_exec and 'ntlm_auth_timeout' to rlm_mschap. Defaults are both
10s (the current setting). The ntlm_auth timeout can only be
reduced... I can't imagine a correctly functioning AD domain where
a successful auth takes >10s.

Cheers,

Matthew


-- 
Matthew Newton, Ph.D. <mcn4 at le.ac.uk>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>


More information about the Freeradius-Users mailing list