FreeRadius only works in debug mode

Greg.Webster at westfraser.com Greg.Webster at westfraser.com
Wed Mar 18 17:07:19 CET 2009


Thanks for the thoughts on this...it looks like the permissions on those 
directories are all good:

# ls -al /var/log/radius/
total 10
drwx------  3 radiusd radiusd  128 Mar 12 14:54 .
drwxr-xr-x 13 root    root    1552 Mar 17 11:36 ..
drwx------  2 radiusd radiusd   48 Apr 23  2008 radacct
-rw-r--r--  1 radiusd radiusd 5150 Mar 17 11:51 radius.log
-rw-r--r--  1 radiusd radiusd    0 Apr 23  2008 radutmp

# ls -al /tmp
drwxrwxrwt  9 root root      616 Mar 18 08:54 .

# ls -al /etc/raddb/
total 208
drwxr-xr-x  3 root root      664 Mar 12 16:11 .
drwxr-xr-x 83 root root     7072 Mar 17 11:33 ..
-rw-r--r--  1 root radiusd   422 Apr 23  2008 acct_users
-rw-r--r--  1 root radiusd  4074 Apr 23  2008 attrs
drwxr-x---  3 root radiusd   472 Mar 12 14:41 certs
-rw-r-----  1 root radiusd  2937 Apr 23  2008 clients.conf
-rw-r--r--  1 root radiusd   929 Apr 23  2008 dictionary
-rw-r-----  1 root radiusd  9332 Apr 23  2008 eap.conf
-rw-r-----  1 root radiusd  4620 Apr 23  2008 example.pl
-rw-r--r--  1 root radiusd  2396 Apr 23  2008 hints
-rw-r--r--  1 root radiusd  1604 Apr 23  2008 huntgroups
-rw-r--r--  1 root radiusd  2333 Apr 23  2008 ldap.attrmap
-rw-r-----  1 root radiusd  9330 Apr 23  2008 mssql.conf
-rw-r-----  1 root radiusd   856 Apr 23  2008 naspasswd
-rw-r--r--  1 root radiusd  7316 Apr 23  2008 otp.conf
-rw-r-----  1 root radiusd  1396 Apr 23  2008 otppasswd.sample
-rw-r-----  1 root radiusd 14467 Apr 23  2008 postgresql.conf
-rw-r-----  1 root radiusd  1039 Apr 23  2008 preproxy_users
-rw-r-----  1 root radiusd  8834 Apr 23  2008 proxy.conf
-rw-r--r--  1 root radiusd 64646 Mar 12 16:06 radiusd.conf
-rw-r-----  1 root radiusd  1405 Apr 23  2008 snmp.conf
-rw-r-----  1 root radiusd 14173 Apr 23  2008 sql.conf
-rw-r-----  1 root radiusd  6974 Mar 12 14:54 users

So, unless there's another location that the radiusd user needs access to? 
I've verified that the service is definitely running as radiusd.

I also looked up the possibility of the selinux protection and it's not 
set up at all on this system.

Other thoughts? I'm stumped on this one.

Thanks,

Greg

A.L.M.Buxey at lboro.ac.uk wrote:
> Hi,
> 
>
> when run in debug, it runs with greater privs - check your eg 
/var/log/radius
> directory, your used tmp directories, /etc/raddb  etc for their 
permissions - does the
> user/group you have defined in radiusd.conf have relevant read/write 
permissions
> 
> other common issue is eg selinux daemon/service protection
> 
> alan


----------------------------
This e-mail message and any attachments are confidential.  Any dissemination or use of this information by a person other than the intended recipient is unauthorized.  If you are not the intended recipient, please notify me by return e-mail, do not open any attachment and delete this communication and any copy.  Thank you



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090318/d6eea8b8/attachment.html>


More information about the Freeradius-Users mailing list