Martin Richard wrote:
First off - if you think this doesnt belong here, just don't reply instead of being caustic.
There is no need to start a message off with that.
Thing is, it doesn't work... If I mess up /etc/raddb/server to change the key, the host entry or whatever to make sure I can't reach the radius server, I don't seem to be going down the stack.. I just get denied access and have no trace at all in the logs.
I do not think pam_radius_auth is behaving wrongly - looking at the code is simple enough, I do get "All RADIUS servers failed to respond" in the SYSLOG, so it should clearly be returning PAM_IGNORE as documented.
Double-check that it's returning PAM_IGNORE. Maybe source code mods to syslog "RETURNING PAM_IGNORE". If it is returning PAM_IGNORE, then it's a PAM problem. Ask the question again on the PAM list. Alan DeKok.