Thanks for the thoughts on this...it looks like the
permissions on those directories are all good:
# ls -al /var/log/radius/
total 10
drwx------ 3 radiusd radiusd 128 Mar 12
14:54 .
drwxr-xr-x 13 root root 1552
Mar 17 11:36 ..
drwx------ 2 radiusd radiusd 48 Apr 23
2008 radacct
-rw-r--r-- 1 radiusd radiusd 5150 Mar 17 11:51
radius.log
-rw-r--r-- 1 radiusd radiusd 0
Apr 23 2008 radutmp
# ls -al /tmp
drwxrwxrwt 9 root root 616
Mar 18 08:54 .
# ls -al /etc/raddb/
total 208
drwxr-xr-x 3 root root 664
Mar 12 16:11 .
drwxr-xr-x 83 root root 7072 Mar 17
11:33 ..
-rw-r--r-- 1 root radiusd 422 Apr 23
2008 acct_users
-rw-r--r-- 1 root radiusd 4074 Apr 23
2008 attrs
drwxr-x--- 3 root radiusd 472 Mar 12
14:41 certs
-rw-r----- 1 root radiusd 2937 Apr 23
2008 clients.conf
-rw-r--r-- 1 root radiusd 929 Apr 23
2008 dictionary
-rw-r----- 1 root radiusd 9332 Apr 23
2008 eap.conf
-rw-r----- 1 root radiusd 4620 Apr 23
2008 example.pl
-rw-r--r-- 1 root radiusd 2396 Apr 23
2008 hints
-rw-r--r-- 1 root radiusd 1604 Apr 23
2008 huntgroups
-rw-r--r-- 1 root radiusd 2333 Apr 23
2008 ldap.attrmap
-rw-r----- 1 root radiusd 9330 Apr 23
2008 mssql.conf
-rw-r----- 1 root radiusd 856 Apr 23
2008 naspasswd
-rw-r--r-- 1 root radiusd 7316 Apr 23
2008 otp.conf
-rw-r----- 1 root radiusd 1396 Apr 23
2008 otppasswd.sample
-rw-r----- 1 root radiusd 14467 Apr 23 2008
postgresql.conf
-rw-r----- 1 root radiusd 1039 Apr 23
2008 preproxy_users
-rw-r----- 1 root radiusd 8834 Apr 23
2008 proxy.conf
-rw-r--r-- 1 root radiusd 64646 Mar 12 16:06
radiusd.conf
-rw-r----- 1 root radiusd 1405 Apr 23
2008 snmp.conf
-rw-r----- 1 root radiusd 14173 Apr 23 2008
sql.conf
-rw-r----- 1 root radiusd 6974 Mar 12
14:54 users
So, unless there's another location that the radiusd
user needs access to? I've verified that the service is definitely running
as radiusd.
I also looked up the possibility of the selinux protection
and it's not set up at all on this system.
Other thoughts? I'm stumped on this one.
Thanks,
Greg
A.L.M.Buxey@lboro.ac.uk wrote:
> Hi,
>
>
> when run in debug, it runs with greater privs - check your eg /var/log/radius
> directory, your used tmp directories, /etc/raddb etc for their
permissions - does the
> user/group you have defined in radiusd.conf have relevant read/write
permissions
>
> other common issue is eg selinux daemon/service protection
>
> alan
----------------------------
This e-mail message and any attachments are confidential. Any dissemination or use of this information by a person other than the intended recipient is unauthorized. If you are not the intended recipient, please notify me by return e-mail, do not open any attachment and delete this communication and any copy. Thank you