rlm_passwd and EAP-MD5
Kolbjørn Barmen
kolbjorn.barmen at uninett.no
Sat Dec 1 15:08:07 CET 2007
On Fri, 30 Nov 2007, Phil Mayers wrote:
> > But is this for real? I need to restart the server if someone changes
> > their password in the file that is configured with rlm_passwd?
>
> Yes
>
> >
> > If so, that's not just a minor annoyance :P
> >
>
> Then use an SQL database.
I see.
> HUP does not work reliably, and cannot be made to, for architectural reasons.
> However, Alan has recently added code to the CVS HEAD which will reload
> *certain* portions of the server (just "users" files I believe) safely on HUP.
Well, that's not a big difference from my point of view, since restarting
the server is done quite quickly anyhow. I'm more surpriced that I have to
do anything, I would expcet that one can change passwords in a passwd-file
without having to restart anything - I actually took that for granted.
> You could possibly contribute (or pay someone to do so) code to do this for
> rlm_passwd, but to be honest - why bother when SQL is available?
Because very often SQL server is utter overkill?
I want _less_ adminitration, not more.
But ok, I guess I can create a script that does what I thought freeradius
did already, monitor the passwd file and restart freeradius when it
notices changes.
--
Kolbjørn Barmen
UNINETT Driftsenter
More information about the Freeradius-Users
mailing list