Message: 1
Date: Mon, 06 Oct 2014 07:58:34 -0400
From: Alan DeKok <aland@deployingradius.com>
To: FreeRadius users mailing list
        <freeradius-users@lists.freeradius.org>
Subject: Re: Beginner help
Message-ID: <543283EA.1060900@deployingradius.com>
Content-Type: text/plain; charset=UTF-8

KAVYA PRABHAKAR wrote:
> I have installed Freeradius version 3 and get openssl error as my
> openssl version was in range 1.0.1 - 1.0.1f*. *
> Now I removed my older openssl version and installed* *openssl 1.0.1g.
> Edited radiusd.conf file as well.
>
> |allow_vulnerable_openssl = 'CVE-2014-0160'|
>
> When I start freeradius server ( ./radiusd -X  for debug mode), it will
> refuse to start with libssl version which is currently installed on your
> server. Root cause for this is ?Security advisory CVE-2014-0160
> (Heartbleed)?

  Then you're not editing the file which the server is reading.



Ok. I will check it out. But I have only one freeradius 3.0.3 directory and I am editing raddb\radiusd.config file in the respective directory.

Let me know if the path where I am editing the file is wrong.

Thanks,
Kavya