Strange problem
Sean Bracken
sean at swarmhotspots.com
Tue Aug 21 18:38:54 CEST 2007
Hi, I am using Freeradius with a MySQL backend and the users log in through
Chillispot running on Buffalo and Linksys routers running DD-WRT. The
problem is that randomly users are recorded up to five times in radacct with
one login. This is not a problem for users with expiration acccounts but
users with max-all-session accounts are thrown out before they have really
used up their time. Has anyone come accross this before? I'd appreiate any
help.
Sean
----- Original Message -----
From: <freeradius-users-request at lists.freeradius.org>
To: <freeradius-users at lists.freeradius.org>
Sent: Tuesday, August 21, 2007 4:28 PM
Subject: Freeradius-Users Digest, Vol 28, Issue 73
> Send Freeradius-Users mailing list submissions to
> freeradius-users at lists.freeradius.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://lists.freeradius.org/mailman/listinfo/freeradius-users
> or, via email, send a message with subject or body 'help' to
> freeradius-users-request at lists.freeradius.org
>
> You can reach the person managing the list at
> freeradius-users-owner at lists.freeradius.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Freeradius-Users digest..."
>
>
> Today's Topics:
>
> 1. RE: PAM Radius (Sayan S)
> 2. customise dialup admin (Carl aniams)
> 3. I am a first timer ! (Joshua Mashiane)
> 4. Database Population problem with mysql (ram)
> 5. RE: Database Population problem with mysql (Josh Howlett)
> 6. Re: I am a first timer ! (Alan DeKok)
> 7. Re: Database Population problem with mysql (ram)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 21 Aug 2007 04:22:20 -0700 (PDT)
> From: Sayan S <sayann_u at yahoo.com>
> Subject: RE: PAM Radius
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Cc: Josh Howlett <Josh.Howlett at ja.net>
> Message-ID: <445430.39719.qm at web63910.mail.re1.yahoo.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> yes josh, as you guessed it, it doesn't work with HP-UX and Solaris (to
> some extent, as it provides a warning during useradd command with '@' in
> the username).
> We don't plan to use LDAP for NSS immediately.
>
> thanks to all.
>
> sayan
>
> Josh Howlett <Josh.Howlett at ja.net> wrote: Hi Sayan,
>
> I think I have tried this previously, and it was possible (on
> Linux/glibc anyway - YMMV with other unices).
>
> TBH, I don't really see the point in using RADIUS when you'll (probably)
> want to use LDAP anyway for nss resolution, so you might as well just
> use LDAP for PAM.
>
> josh.
>
>> -----Original Message-----
>> From:
>> freeradius-users-bounces+josh.howlett=ja.net at lists.freeradius.
>> org
>> [mailto:freeradius-users-bounces+josh.howlett=ja.net at lists.fre
> eradius.org] On Behalf Of Sayan S
>> Sent: 20 August 2007 14:04
>> To: FreeRadius users mailing list
>> Subject: Re: PAM Radius
>>
>> Thanks Alan for the quick response.
>> I am referring to realm here, as RADIUS support realms, and
>> we are using RADIUS to authenticate the users to Linux, so
>> seems like we need to have all users contained in the same realm.
>>
>> Is having username in user at realm form a valid unix format? I
>> was thinking the first part of the user at realm should be the
>> unix username though the radius request is sent as
>> user at realm. Otherwise we need to have a comprehensive
>> RADIUS-username at realm to Unix-userid mapping.
>>
>> regards,
>> sayan
>>
>> Alan DeKok wrote:
>>
>> Sayan S wrote:
>> > Greetings, I am very new to RADIUS and PAM RADIUS.
>> > I am trying to configure PAM Radius to authenticate
>> users on a Linux
>> > host. I would like to know, how to configure PAM
>> Radius to authenticate
>> > users from different realms, as the current
>> configuration doesn't seem
>> > to take realm.
>>
>> You don't use realms in Unix logins.
>>
>> > please help me with this as I have configured users
>> to be part of
>> > different realms on radius server and now want to
>> authenticate all those
>> > users to the same Linux host.
>>
>> You just login as "user at realm". That might work.
>>
>> Alan DeKok.
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
>>
>>
>> ________________________________
>>
>> Park yourself in front of a world of choices in alternative vehicles.
>> Visit the Yahoo! Auto Green Center.
>> n_center/;>
> _ylc=X3oDMTE5cDF2bXZzBF9TAzk3MTA3MDc2BHNlYwNtYWlsdGFncwRzbGsDZ
>> 3JlZW4tY2VudGVy>
>>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
>
>
> ---------------------------------
> Take the Internet to Go: Yahoo!Go puts the Internet in your pocket: mail,
> news, photos & more.
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070821/8287c4ad/attachment-0001.html
>
> ------------------------------
>
> Message: 2
> Date: Tue, 21 Aug 2007 15:32:04 +0200
> From: "Carl aniams" <aniamss at gmail.com>
> Subject: customise dialup admin
> To: freeradius-users at lists.freeradius.org
> Message-ID:
> <8b9c77590708210632m243f1e44q4c8b54ca0d1ce7fb at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi
>
> i'm presently using dialup admin for client connexion to the net.
> but my handicap is the time counter. i would like to know if it would be
> possible
> to set graphical time counter for a customer . also is it possible to
> increase the time limit
> for a customer that may require an hour more.
> if yes how please.
> thanks
> --
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
>
> ANIAMBOSSOU Carl
> NIAMS TECHNOLOGIES
> tel: +229 90 04 08 58 +229 97 48 01 33
> COTONOU
> REPUBLIC OF BENIN
> WEST AFRICA
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070821/15e71b33/attachment-0001.html
>
> ------------------------------
>
> Message: 3
> Date: Tue, 21 Aug 2007 16:34:50 +0200
> From: Joshua Mashiane <joshua at mohwiti.co.za>
> Subject: I am a first timer !
> To: freeradius-users at lists.freeradius.org
> Message-ID: <20070821143450.524f766f at thutong.mohwiti.co.za>
> Content-Type: text/plain; charset="us-ascii"
>
> Hi
>
> I am a first timer in this Freeradius server, i have managed to configure
> my server on a centos machine which is runniny Asterisk.
>
> The problem comes when i have to configure it so Windows XP machine
> can connect, i have followed lots and lots of tutorial i don't even
> remember
> what i did, but the proble still remains. I am not sure if i created the
> certificates
> right or what.
>
> The first error that i get is something like {mohwiti.co.za/no-password
> attribute}
>
> Now this is what i am getting
>
> TLS Alert write:fatal:error:unknow CA
> TLS accept:error in SSLv3 read client certificate B
> Error: rlm_eap_tls: SSL_read failed in a system call (-1), TLS session
> fails
>
> I don't know what that means
>
> Kind Regards
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070821/9b3a5c72/attachment-0001.html
>
> ------------------------------
>
> Message: 4
> Date: Tue, 21 Aug 2007 20:36:19 +0530
> From: ram <talk2ram at gmail.com>
> Subject: Database Population problem with mysql
> To: "FreeRadius users mailing list"
> <freeradius-users at lists.freeradius.org>
> Message-ID:
> <b74751490708210806k4bfea030i890b7f300861b65b at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi
>
> iam trying to populate mysql datatabase
> iam getting following error
>
> any suggstions
>
> mysql -u root -ppassword radius < mysql.sql
> ERROR 1067 (42000) at line 15: Invalid default value for 'AcctStartTime'
>
>
> line 15 looks like below
>
> AcctStartTime datetime NOT NULL default '0000-00-00 00:00:00',
> AcctStopTime datetime NOT NULL default '0000-00-00 00:00:00',
>
>
> ram
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070821/ca7dacc3/attachment-0001.html
>
> ------------------------------
>
> Message: 5
> Date: Tue, 21 Aug 2007 16:11:15 +0100
> From: "Josh Howlett" <Josh.Howlett at ja.net>
> Subject: RE: Database Population problem with mysql
> To: "FreeRadius users mailing list"
> <freeradius-users at lists.freeradius.org>
> Cc: Josh Howlett <Josh.Howlett at ja.net>
> Message-ID:
> <6ED388AA006C454BA35B0098396B9BFB028F507C at uxsrvr20.atlas.ukerna.ac.uk>
> Content-Type: text/plain; charset="us-ascii"
>
>> (42000) at line 15: Invalid default value for 'AcctStartTime'
>
> Try using a valid value for this.
>
> josh.
>
>
>
> ------------------------------
>
> Message: 6
> Date: Tue, 21 Aug 2007 17:25:23 +0200
> From: Alan DeKok <aland at deployingradius.com>
> Subject: Re: I am a first timer !
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Message-ID: <46CB03E3.8020605 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Joshua Mashiane wrote:
>> The problem comes when i have to configure it so Windows XP machine
>> can connect, i have followed lots and lots of tutorial i don't even
>> remember
>> what i did,
>
> That's a bit of a problem. Administrating systems by randomly
> changing things isn't a good practice.
>
>> Now this is what i am getting
>>
>> TLS Alert write:fatal:error:unknow CA
>> TLS accept:error in SSLv3 read client certificate B
>> Error: rlm_eap_tls: SSL_read failed in a system call (-1), TLS session
>> fails
>>
>> I don't know what that means
>
> The supplicant has a certificate signed by someone that the RADIUS
> server knows nothing about.
>
> Alan DeKok.
>
>
> ------------------------------
>
> Message: 7
> Date: Tue, 21 Aug 2007 20:58:34 +0530
> From: ram <talk2ram at gmail.com>
> Subject: Re: Database Population problem with mysql
> To: "FreeRadius users mailing list"
> <freeradius-users at lists.freeradius.org>
> Cc: Josh Howlett <Josh.Howlett at ja.net>
> Message-ID:
> <b74751490708210828q15e3be26m71c22fbe987e5ec4 at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> On 8/21/07, Josh Howlett <Josh.Howlett at ja.net> wrote:
>>
>> > (42000) at line 15: Invalid default value for 'AcctStartTime'
>>
>> Try using a valid value for this.
>
>
> Hi
>
> what is the correct value for that record
>
> as per the document iam populating
>
> iam using mysql
>
> mysql Ver 14.12 Distrib 5.0.32, for pc-linux-gnu (i486) using readline
> 5.2
>
> on debian
>
> any suggestions
>
> ram
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> https://lists.freeradius.org/pipermail/freeradius-users/attachments/20070821/d7fb1892/attachment.html
>
> ------------------------------
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
>
> End of Freeradius-Users Digest, Vol 28, Issue 73
> ************************************************
>
>
More information about the Freeradius-Users
mailing list