HUP handling: a thought
Reimer Karlsen-Masur, DFN-CERT
karlsen-masur at dfn-cert.de
Fri May 4 08:58:13 CEST 2007
Hi!
Alan DeKok wrote:
> To answer my first question. People HUP the server to:
>
> a) add/edit/delete a client/realm/home-server
> b) re-read the "users" file
> c) not much else.
Except:
I remember vaguely that HUPing was at least once used to re-read updated
CRLs and probably also re-reading the list/directory of trusted client-CA
certificates for all the EAP-(T)TLS/PEAP stuff.
I an email recently send to freeradius-users you recommended to simply
restart the daemon for this since HUPing does not work for this purpose anymore.
> If we make the server support (a) without HUP, that will address a
> large part of my concerns.
--
Beste Gruesse / Kind Regards
Reimer Karlsen-Masur
DFN-PKI FAQ: https://www.pki.dfn.de/faqpki
--
Dipl.-Inform. Reimer Karlsen-Masur (PKI Team), Phone +49 40 808077-615
DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5853 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-devel/attachments/20070504/b7cb35ce/attachment.bin>
More information about the Freeradius-Devel
mailing list