Mikrotik Dissconect

f0rud fzerorubigd at gmail.com
Thu Jun 10 12:48:18 CEST 2010


Hi all

I found the "calc_replydigest" function in radius.c always return 2
(digest_cmp failed) Since this function is new in code , then its the
problem and the diff. with version 1.x

For fixing my problem, I just by pass this test for PW_DISCONNECT_ACK
(not a good idea I know but what else I can do?) and now its fine for my
problem.

I see the code for another messages (for ex: PW_AUTHENTICATION_REQUEST)
you just ignore the code, so why this one(PW_DISCONNECT_ACK) "must" be
checked? if some one want to do "timing attack" then can use this
message(PW_AUTHENTICATION_REQUEST) so by checking just some message its
not "safe".





More information about the Freeradius-Users mailing list