Bugs installing 2.0pre1

Humberto Diogenes humberto at digi.com.br
Sat Aug 18 11:29:41 CEST 2007 

Hi, guys!

   After successfully building a FreeRadius 2.0pre1 package with  
"dpkg-buildpackage -us -uc", I had many errors installing and running  
it. In the end it worked, but I decided to document every error so  
that they won't appear again when I try 2.0pre2. :)


# "freeradius -x" should be "freeradius -X"
root at caju-test:/etc# dpkg -i /usr/local/src/freeradius- 
postgresql_2.0.0-pre0_i386.deb
Selecting previously deselected package freeradius-postgresql.
(Reading database ... 49070 files and directories currently installed.)
Unpacking freeradius-postgresql (from .../freeradius-postgresql_2.0.0- 
pre0_i386.deb) ...
Setting up freeradius-postgresql (2.0.0-pre0) ...
Restarting FreeRADIUS daemon...
Stopping FreeRADIUS daemon: freeradius.
Starting FreeRADIUS daemon: (failed!  run '/usr/sbin/freeradius -x'  
to find out why.)

# No exec permission
Exec-Program output: Exec-Program: FAILED to execute /etc/freeradius/ 
certs/bootstrap: Permission denied
Exec-Program-Wait: plaintext: Exec-Program: FAILED to execute /etc/ 
freeradius/certs/bootstrap: Permission denied

root at caju-test:/etc# ls freeradius/certs/ -l
-rw-r-----  1 root freerad  297 2007-08-18 02:22 bootstrap
(...)

# chmod +x certs/bootstrap

# After that:
Generating a 2048 bit RSA private key
........................................................................ 
.................................................+++
......................+++
unable to write 'random state'
writing new private key to 'ca.key'

# Fixing it:
chmod g+w certs
freeradius -X
# Creates certificates OK

# After that, wrong permissions for new files:
root at caju-test:/etc/freeradius/certs# ls -la
total 54
drwxr-s--x  2 root    freerad 1024 2007-08-18 02:37 .
drwxr-s--x  4 root    freerad 1024 2007-08-18 02:33 ..
-rw-r--r--  1 freerad freerad 4210 2007-08-18 02:36 01.pem
-rwxr-x---  1 root    freerad  297 2007-08-18 02:22 bootstrap
-rw-r-----  1 root    freerad 1155 2007-08-18 02:22 ca.cnf
(...)
-rw-r--r--  1 freerad freerad 5120 2007-08-18 02:37 random
-rw-r-----  1 root    freerad 4063 2007-08-18 02:22 README
-rw-r--r--  1 freerad freerad    3 2007-08-18 02:36 serial
-rw-r--r--  1 freerad freerad    3 2007-08-18 02:36 serial.old
-rw-r-----  1 root    freerad 1123 2007-08-18 02:22 server.cnf
(...)
-rw-r--r--  1 freerad freerad 3503 2007-08-18 02:36 server.pem

# Fixing permissions:
root at caju-test:/etc/freeradius/certs# chown root *
root at caju-test:/etc/freeradius/certs# chmod o= *



# /doc/examples/postgresql.sql
# radusergroup comes without primary key
CREATE TABLE radusergroup (
	id          SERIAL PRIMARY KEY,              -- this line is missing
	UserName    VARCHAR(64) NOT NULL DEFAULT '',
	GroupName   VARCHAR(64) NOT NULL DEFAULT '',
	priority    INTEGER NOT NULL DEFAULT 0
);


# What does this mean?
# (output of freeradius -X after simple authentication with radtest)
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!
!!!    Replacing User-Password in config items with Cleartext- 
Password.     !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!
!!! Please update your configuration so that the "known  
good"               !!!
!!! clear text password is in Cleartext-Password, and not in User- 
Password. !!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!


   And that's all.

--
Humberto Diógenes
http://humberto.digi.com.br

More information about the Freeradius-Devel mailing list