22 Mar
2007
22 Mar
'07
6:35 p.m.
On March 22, 2007 4:27:44 PM -0600 David Mitchell <mitchell@ucar.edu> wrote:
I think I figured out the source for the 'odd' behavior I was seeing. In a nutshell, my timeout on the PAM module side was shorter than the delay imposed by the freeradius server for bad passwords. I need to play around more and find out what a 'safe' value is. Do you happen to know where in the freeradius/otpd/lsmd chain the bad password delay is being imposed? I can probably find it, but I'm guessing that you know.
The radiusd.conf 'reject_delay' option. I always set this to 0. -frank