nospace_user not working as expected in 1.0.5
Hi, again. Another strangeness I noticed: we have "nospace_user = after" in radiusd.conf, but since switching to 1.0.5, this doesn't appear to act the same way as it did in 0.8.1. Using a username like "username " keeps rejecting the user instead of stripping spaces and trying again. "nospace_user = before" works fine. Actually, "nospace_pass = after" seems to work fine as well. Is this a known issue, or an "oops?" My workaround was to put use nospace_user before and keep nospace_pass after, since passwords may have spaces in them, but usernames may not. Thanks! Kristina
Kristina Pfaff-Harris <kristina@greatbasin.net> wrote:
Hi, again. Another strangeness I noticed: we have "nospace_user = after" in radiusd.conf, but since switching to 1.0.5, this doesn't appear to act the same way as it did in 0.8.1. Using a username like "username " keeps rejecting the user instead of stripping spaces and trying again.
The whole "nospace_user" stuff is a *terrible* hack.
Is this a known issue, or an "oops?" My workaround was to put use nospace_user before and keep nospace_pass after, since passwords may have spaces in them, but usernames may not.
If that works, fine. But this functionality will *not* be in 1.1 or later. Alan DeKok.
On Mon, 14 Nov 2005, Alan DeKok wrote:
The whole "nospace_user" stuff is a *terrible* hack.
Heh. Fair enough.
If that works, fine. But this functionality will *not* be in 1.1 or later.
Gads. You mean users will have to type their usernames and passwords correctly? Eek! :-) But seriously, folks. We can deal with that -- a little more load on the tech support folks, but not huge. On the other hand, I don't suppose you have any suggestions for a better way to do a similar thing? It just seems like such a great feature given that spaces are hard to see and mostly should be stripped out (at least in our case). Maybe through meddling with the sql queries or something? Worst comes to worst we can do without it, but it is a very nice thing to have. K.
Kristina Pfaff-Harris <kristina@greatbasin.net> wrote:
But seriously, folks. We can deal with that -- a little more load on the tech support folks, but not huge. On the other hand, I don't suppose you have any suggestions for a better way to do a similar thing?
rlm_policy. It's more generic than hacking "nospace_*" into the server core. Alan DeKok.
On Mon, 14 Nov 2005, Alan DeKok wrote:
Kristina Pfaff-Harris <kristina@greatbasin.net> wrote:
But seriously, folks. We can deal with that -- a little more load on the tech support folks, but not huge. On the other hand, I don't suppose you have any suggestions for a better way to do a similar thing?
rlm_policy. It's more generic than hacking "nospace_*" into the server core.
Great, thanks! I haven't looked at that much yet -- too much to catch up with going from 0.8.1 to 1.0.5. :-) I'll go dig into it now. Thanks once again for your time and insight, Alan. You rock! Kristina
participants (2)
-
Alan DeKok -
Kristina Pfaff-Harris