Segmentation Fault after authorize - 2.1.12+dfsg-1.2 Debian
Jennifer Mehl
mehl at chem.ucsb.edu
Wed Feb 27 02:59:18 CET 2013
Hello,
I just updated to Debian wheezy 7.0, kernel 3.2.0-4-amd64, and the accompanying freeradius-2.1.12+dfsg-1.2. (Previously using Debian squeeze 6.0 and freeradius 2.1.10+dfsg-2+squeeze1.)
After the OS update and FreeRADIUS updates, freeradius is now seg faulting after trying to process the authorize section when a wireless client attempts to connect via EAP-PEAP (MSCHAPv2). (None of the free radius configuration files have changed).
I suspect a library problem of some kind, but I've removed all old freeradius libraries from /usr/lib/freeradius and removed and reinstalled all of the free radius packages from the Debian repository. Any assistance on what to look for next would be appreciated.
Here is freeradius config:
######################################################################
#
# As of 2.0.0, FreeRADIUS supports virtual hosts using the
# "server" section, and configuration directives.
#
# Virtual hosts should be put into the "sites-available"
# directory. Soft links should be created in the "sites-enabled"
# directory to these files. This is done in a normal installation.
#
# $Id$
#
######################################################################
#
# Read "man radiusd" before editing this file. See the section
# titled DEBUGGING. It outlines a method where you can quickly
# obtain the configuration you want, without running into
# trouble. See also "man unlang", which documents the format
# of this file.
#
# This configuration is designed to work in the widest possible
# set of circumstances, with the widest possible number of
# authentication methods. This means that in general, you should
# need to make very few changes to this file.
#
# The best way to configure the server for your local system
# is to CAREFULLY edit this file. Most attempts to make large
# edits to this file will BREAK THE SERVER. Any edits should
# be small, and tested by running the server with "radiusd -X".
# Once the edits have been verified to work, save a copy of these
# configuration files somewhere. (e.g. as a "tar" file). Then,
# make more edits, and test, as above.
#
# There are many "commented out" references to modules such
# as ldap, sql, etc. These references serve as place-holders.
# If you need the functionality of that module, then configure
# it in radiusd.conf, and un-comment the references to it in
# this file. In most cases, those small changes will result
# in the server being able to connect to the DB, and to
# authenticate users.
#
######################################################################
#
# In 1.x, the "authorize", etc. sections were global in
# radiusd.conf. As of 2.0, they SHOULD be in a server section.
#
# The server section with no virtual server name is the "default"
# section. It is used when no server name is specified.
#
# We don't indent the rest of this file, because doing so
# would make it harder to read.
#
# Authorization. First preprocess (hints and huntgroups files),
# then realms, and finally look in the "users" file.
#
# The order of the realm modules will determine the order that
# we try to find a matching realm.
#
# Make *sure* that 'preprocess' comes before any realm if you
# need to setup hints for the remote radius server
authorize {
#
# The preprocess module takes care of sanitizing some bizarre
# attributes in the request, and turning them into attributes
# which are more standard.
#
# It takes care of processing the 'raddb/hints' and the
# 'raddb/huntgroups' files.
preprocess
#
# If you want to have a log of authentication requests,
# un-comment the following line, and the 'detail auth_log'
# section, above.
# auth_log
#
# The chap module will set 'Auth-Type := CHAP' if we are
# handling a CHAP request and Auth-Type has not already been set
#chap
#
# If the users are logging in with an MS-CHAP-Challenge
# attribute for authentication, the mschap module will find
# the MS-CHAP-Challenge attribute, and add 'Auth-Type := MS-CHAP'
# to the request, which will cause the server to then use
# the mschap module for authentication.
#mschap
#
# If you have a Cisco SIP server authenticating against
# FreeRADIUS, uncomment the following line, and the 'digest'
# line in the 'authenticate' section.
#digest
#
# The WiMAX specification says that the Calling-Station-Id
# is 6 octets of the MAC. This definition conflicts with
# RFC 3580, and all common RADIUS practices. Un-commenting
# the "wimax" module here means that it will fix the
# Calling-Station-Id attribute to the normal format as
# specified in RFC 3580 Section 3.21
# wimax
#
# Look for IPASS style 'realm/', and if not found, look for
# '@realm', and decide whether or not to proxy, based on
# that.
# IPASS
#
# If you are using multiple kinds of realms, you probably
# want to set "ignore_null = yes" for all of them.
# Otherwise, when the first style of realm doesn't match,
# the other styles won't be checked.
#
suffix
# ntdomain
#
# This module takes care of EAP-MD5, EAP-TLS, and EAP-LEAP
# authentication.
#
# It also sets the EAP-Type attribute in the request
# attribute list to the EAP type from the packet.
#
# As of 2.0, the EAP module returns "ok" in the authorize stage
# for TTLS and PEAP. In 1.x, it never returned "ok" here, so
# this change is compatible with older configurations.
#
# The example below uses module failover to avoid querying all
# of the following modules if the EAP module returns "ok".
# Therefore, your LDAP and/or SQL servers will not be queried
# for the many packets that go back and forth to set up TTLS
# or PEAP. The load on those servers will therefore be reduced.
#
eap {
ok = return
}
#
# Pull crypt'd passwords from /etc/passwd or /etc/shadow,
# using the system API's to get the password. If you want
# to read /etc/passwd or /etc/shadow directly, see the
# passwd module in radiusd.conf.
#
# unix
#
# Read the 'users' file
files
#
# Look in an SQL database. The schema of the database
# is meant to mirror the "users" file.
#
# See "Authorization Queries" in sql.conf
# sql
#
# If you are using /etc/smbpasswd, and are also doing
# mschap authentication, the un-comment this line, and
# configure the 'etc_smbpasswd' module, above.
# etc_smbpasswd
smbpasswd
#
# The ldap module will set Auth-Type to LDAP if it has not
# already been set
# ldap
ucsbnetid
#
# Enforce daily limits on time spent logged in.
# daily
#
# Use the checkval module
# checkval
expiration
logintime
#
# If no other module has claimed responsibility for
# authentication, then try to use PAP. This allows the
# other modules listed above to add a "known good" password
# to the request, and to do nothing else. The PAP module
# will then see that password, and use it to do PAP
# authentication.
#
# This module should be listed last, so that the other modules
# get a chance to set Auth-Type for themselves.
#
pap
#
# If "status_server = yes", then Status-Server messages are passed
# through the following section, and ONLY the following section.
# This permits you to do DB queries, for example. If the modules
# listed here return "fail", then NO response is sent.
#
# Autz-Type Status-Server {
#
# }
}
# Authentication.
#
#
# This section lists which modules are available for authentication.
# Note that it does NOT mean 'try each module in order'. It means
# that a module from the 'authorize' section adds a configuration
# attribute 'Auth-Type := FOO'. That authentication type is then
# used to pick the apropriate module from the list below.
#
# In general, you SHOULD NOT set the Auth-Type attribute. The server
# will figure it out on its own, and will do the right thing. The
# most common side effect of erroneously setting the Auth-Type
# attribute is that one authentication method will work, but the
# others will not.
#
# The common reasons to set the Auth-Type attribute by hand
# is to either forcibly reject the user (Auth-Type := Reject),
# or to or forcibly accept the user (Auth-Type := Accept).
#
# Note that Auth-Type := Accept will NOT work with EAP.
#
# Please do not put "unlang" configurations into the "authenticate"
# section. Put them in the "post-auth" section instead. That's what
# the post-auth section is for.
#
authenticate {
#
# PAP authentication, when a back-end database listed
# in the 'authorize' section supplies a password. The
# password can be clear-text, or encrypted.
Auth-Type PAP {
pap
}
#
# Most people want CHAP authentication
# A back-end database listed in the 'authorize' section
# MUST supply a CLEAR TEXT password. Encrypted passwords
# won't work.
Auth-Type CHAP {
chap
}
#
# MSCHAP authentication.
Auth-Type MS-CHAP {
mschap
}
#
# If you have a Cisco SIP server authenticating against
# FreeRADIUS, uncomment the following line, and the 'digest'
# line in the 'authorize' section.
# digest
#
# Pluggable Authentication Modules.
# pam
#
# See 'man getpwent' for information on how the 'unix'
# module checks the users password. Note that packets
# containing CHAP-Password attributes CANNOT be authenticated
# against /etc/passwd! See the FAQ for details.
#
# For normal "crypt" authentication, the "pap" module should
# be used instead of the "unix" module. The "unix" module should
# be used for authentication ONLY for compatibility with legacy
# FreeRADIUS configurations.
#
# unix
# Uncomment it if you want to use ldap for authentication
#
# Note that this means "check plain-text password against
# the ldap database", which means that EAP won't work,
# as it does not supply a plain-text password.
# Auth-Type LDAP {
# ldap
# }
ucsbnetid
#
# Allow EAP authentication.
eap
#
# The older configurations sent a number of attributes in
# Access-Challenge packets, which wasn't strictly correct.
# If you want to filter out these attributes, uncomment
# the following lines.
#
# Auth-Type eap {
# eap {
# handled = 1
# }
# if (handled && (Response-Packet-Type == Access-Challenge)) {
# attr_filter.access_challenge.post-auth
# handled # override the "updated" code from attr_filter
# }
# }
}
#
# Pre-accounting. Decide which accounting type to use.
#
preacct {
preprocess
#
# Session start times are *implied* in RADIUS.
# The NAS never sends a "start time". Instead, it sends
# a start packet, *possibly* with an Acct-Delay-Time.
# The server is supposed to conclude that the start time
# was "Acct-Delay-Time" seconds in the past.
#
# The code below creates an explicit start time, which can
# then be used in other modules.
#
# The start time is: NOW - delay - session_length
#
# update request {
# FreeRADIUS-Acct-Session-Start-Time = "%{expr: %l - %{%{Acct-Session-Time}:-0} - %{%{Acct-Delay-Time}:-0}}"
# }
#
# Ensure that we have a semi-unique identifier for every
# request, and many NAS boxes are broken.
acct_unique
#
# Look for IPASS-style 'realm/', and if not found, look for
# '@realm', and decide whether or not to proxy, based on
# that.
#
# Accounting requests are generally proxied to the same
# home server as authentication requests.
# IPASS
suffix
# ntdomain
#
# Read the 'acct_users' file
files
}
#
# Accounting. Log the accounting data.
#
accounting {
#
# Create a 'detail'ed log of the packets.
# Note that accounting requests which are proxied
# are also logged in the detail file.
detail
# daily
# Update the wtmp file
#
# If you don't use "radlast", you can delete this line.
unix
#
# For Simultaneous-Use tracking.
#
# Due to packet losses in the network, the data here
# may be incorrect. There is little we can do about it.
radutmp
# sradutmp
# Return an address to the IP Pool when we see a stop record.
# main_pool
#
# Log traffic to an SQL database.
#
# See "Accounting queries" in sql.conf
# sql
#
# If you receive stop packets with zero session length,
# they will NOT be logged in the database. The SQL module
# will print a message (only in debugging mode), and will
# return "noop".
#
# You can ignore these packets by uncommenting the following
# three lines. Otherwise, the server will not respond to the
# accounting request, and the NAS will retransmit.
#
# if (noop) {
# ok
# }
#
# Instead of sending the query to the SQL server,
# write it into a log file.
#
# sql_log
# Cisco VoIP specific bulk accounting
# pgsql-voip
# For Exec-Program and Exec-Program-Wait
exec
# Filter attributes from the accounting response.
attr_filter.accounting_response
#
# See "Autz-Type Status-Server" for how this works.
#
# Acct-Type Status-Server {
#
# }
}
# Session database, used for checking Simultaneous-Use. Either the radutmp
# or rlm_sql module can handle this.
# The rlm_sql module is *much* faster
session {
radutmp
#
# See "Simultaneous Use Checking Queries" in sql.conf
# sql
}
# Post-Authentication
# Once we KNOW that the user has been authenticated, there are
# additional steps we can take.
post-auth {
# Get an address from the IP Pool.
# main_pool
#
# If you want to have a log of authentication replies,
# un-comment the following line, and the 'detail reply_log'
# section, above.
# reply_log
#
# After authenticating the user, do another SQL query.
#
# See "Authentication Logging Queries" in sql.conf
# sql
#
# Instead of sending the query to the SQL server,
# write it into a log file.
#
# sql_log
#
# Un-comment the following if you have set
# 'edir_account_policy_check = yes' in the ldap module sub-section of
# the 'modules' section.
#
# ldap
# For Exec-Program and Exec-Program-Wait
exec
#
# Calculate the various WiMAX keys. In order for this to work,
# you will need to define the WiMAX NAI, usually via
#
# update request {
# WiMAX-MN-NAI = "%{User-Name}"
# }
#
# If you want various keys to be calculated, you will need to
# update the reply with "template" values. The module will see
# this, and replace the template values with the correct ones
# taken from the cryptographic calculations. e.g.
#
# update reply {
# WiMAX-FA-RK-Key = 0x00
# WiMAX-MSK = "%{EAP-MSK}"
# }
#
# You may want to delete the MS-MPPE-*-Keys from the reply,
# as some WiMAX clients behave badly when those attributes
# are included. See "raddb/modules/wimax", configuration
# entry "delete_mppe_keys" for more information.
#
# wimax
# If there is a client certificate (EAP-TLS, sometimes PEAP
# and TTLS), then some attributes are filled out after the
# certificate verification has been performed. These fields
# MAY be available during the authentication, or they may be
# available only in the "post-auth" section.
#
# The first set of attributes contains information about the
# issuing certificate which is being used. The second
# contains information about the client certificate (if
# available).
#
# update reply {
# Reply-Message += "%{TLS-Cert-Serial}"
# Reply-Message += "%{TLS-Cert-Expiration}"
# Reply-Message += "%{TLS-Cert-Subject}"
# Reply-Message += "%{TLS-Cert-Issuer}"
# Reply-Message += "%{TLS-Cert-Common-Name}"
#
# Reply-Message += "%{TLS-Client-Cert-Serial}"
# Reply-Message += "%{TLS-Client-Cert-Expiration}"
# Reply-Message += "%{TLS-Client-Cert-Subject}"
# Reply-Message += "%{TLS-Client-Cert-Issuer}"
# Reply-Message += "%{TLS-Client-Cert-Common-Name}"
# }
# If the WiMAX module did it's work, you may want to do more
# things here, like delete the MS-MPPE-*-Key attributes.
#
# if (updated) {
# update reply {
# MS-MPPE-Recv-Key !* 0x00
# MS-MPPE-Send-Key !* 0x00
# }
# }
#
# Access-Reject packets are sent through the REJECT sub-section of the
# post-auth section.
#
# Add the ldap module name (or instance) if you have set
# 'edir_account_policy_check = yes' in the ldap module configuration
#
Post-Auth-Type REJECT {
# log failed authentications in SQL, too.
# sql
attr_filter.access_reject
}
}
#
# When the server decides to proxy a request to a home server,
# the proxied request is first passed through the pre-proxy
# stage. This stage can re-write the request, or decide to
# cancel the proxy.
#
# Only a few modules currently have this method.
#
pre-proxy {
# attr_rewrite
# Uncomment the following line if you want to change attributes
# as defined in the preproxy_users file.
# files
# Uncomment the following line if you want to filter requests
# sent to remote servers based on the rules defined in the
# 'attrs.pre-proxy' file.
# attr_filter.pre-proxy
# If you want to have a log of packets proxied to a home
# server, un-comment the following line, and the
# 'detail pre_proxy_log' section, above.
# pre_proxy_log
}
#
# When the server receives a reply to a request it proxied
# to a home server, the request may be massaged here, in the
# post-proxy stage.
#
post-proxy {
# If you want to have a log of replies from a home server,
# un-comment the following line, and the 'detail post_proxy_log'
# section, above.
# post_proxy_log
# attr_rewrite
# Uncomment the following line if you want to filter replies from
# remote proxies based on the rules defined in the 'attrs' file.
# attr_filter.post-proxy
#
# If you are proxying LEAP, you MUST configure the EAP
# module, and you MUST list it here, in the post-proxy
# stage.
#
# You MUST also use the 'nostrip' option in the 'realm'
# configuration. Otherwise, the User-Name attribute
# in the proxied request will not match the user name
# hidden inside of the EAP packet, and the end server will
# reject the EAP request.
#
eap
#
# If the server tries to proxy a request and fails, then the
# request is processed through the modules in this section.
#
# The main use of this section is to permit robust proxying
# of accounting packets. The server can be configured to
# proxy accounting packets as part of normal processing.
# Then, if the home server goes down, accounting packets can
# be logged to a local "detail" file, for processing with
# radrelay. When the home server comes back up, radrelay
# will read the detail file, and send the packets to the
# home server.
#
# With this configuration, the server always responds to
# Accounting-Requests from the NAS, but only writes
# accounting packets to disk if the home server is down.
#
# Post-Proxy-Type Fail {
# detail
# }
}
Here is the freeradius debug output:
deca:~# freeradius -Xxxx
Tue Feb 26 17:45:29 2013 : Info: FreeRADIUS Version 2.1.12, for host x86_64-pc-linux-gnu, built on Dec 16 2012 at 13:28:43
Tue Feb 26 17:45:29 2013 : Info: Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
Tue Feb 26 17:45:29 2013 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
Tue Feb 26 17:45:29 2013 : Info: PARTICULAR PURPOSE.
Tue Feb 26 17:45:29 2013 : Info: You may redistribute copies of FreeRADIUS under the terms of the
Tue Feb 26 17:45:29 2013 : Info: GNU General Public License v2.
Tue Feb 26 17:45:29 2013 : Info: Starting - reading configuration files ...
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/radiusd.conf
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/proxy.conf
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/clients.conf
Tue Feb 26 17:45:29 2013 : Debug: including files in directory /etc/freeradius/modules/
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/replicate
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/krb5
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/etc_group
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/wimax
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/unix
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/cui
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/mac2vlan
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/sql_log
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/sradutmp
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/sqlcounter_expire_on_login
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/smbpasswd
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/preprocess
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/otp
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/radutmp
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/exec
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/linelog
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/pam
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/dynamic_clients.dpkg-dist
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/ldap
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/ippool
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/echo
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/ldap.dpkg-dist
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/ntlm_auth
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/checkval
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/realm
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/attr_rewrite
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/expiration
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/counter
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/files
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/mschap
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/logintime
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/expr
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/attr_filter
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/digest
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/passwd
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/smsotp
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/inner-eap
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/always
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/mac2ip
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/redis
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/chap
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/pap
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/detail.log
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/rediswho
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/detail.example.com
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/perl
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/policy
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/detail
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/soh
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/modules/acct_unique
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/eap.conf
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/policy.conf
Tue Feb 26 17:45:29 2013 : Debug: including files in directory /etc/freeradius/sites-enabled/
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/sites-enabled/inner-tunnel
Tue Feb 26 17:45:29 2013 : Debug: including configuration file /etc/freeradius/sites-enabled/default
Tue Feb 26 17:45:29 2013 : Debug: main {
Tue Feb 26 17:45:29 2013 : Debug: user = "root"
Tue Feb 26 17:45:29 2013 : Debug: group = "freerad"
Tue Feb 26 17:45:29 2013 : Debug: allow_core_dumps = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: including dictionary file /etc/freeradius/dictionary
Tue Feb 26 17:45:29 2013 : Debug: main {
Tue Feb 26 17:45:29 2013 : Debug: name = "freeradius"
Tue Feb 26 17:45:29 2013 : Debug: prefix = "/usr"
Tue Feb 26 17:45:29 2013 : Debug: localstatedir = "/var"
Tue Feb 26 17:45:29 2013 : Debug: sbindir = "/usr/sbin"
Tue Feb 26 17:45:29 2013 : Debug: logdir = "/var/log/freeradius"
Tue Feb 26 17:45:29 2013 : Debug: run_dir = "/var/run/freeradius"
Tue Feb 26 17:45:29 2013 : Debug: libdir = "/usr/lib/freeradius"
Tue Feb 26 17:45:29 2013 : Debug: radacctdir = "/var/log/freeradius/radacct"
Tue Feb 26 17:45:29 2013 : Debug: hostname_lookups = no
Tue Feb 26 17:45:29 2013 : Debug: max_request_time = 30
Tue Feb 26 17:45:29 2013 : Debug: cleanup_delay = 5
Tue Feb 26 17:45:29 2013 : Debug: max_requests = 1024
Tue Feb 26 17:45:29 2013 : Debug: pidfile = "/var/run/freeradius/freeradius.pid"
Tue Feb 26 17:45:29 2013 : Debug: checkrad = "/usr/sbin/checkrad"
Tue Feb 26 17:45:29 2013 : Debug: debug_level = 0
Tue Feb 26 17:45:29 2013 : Debug: proxy_requests = yes
Tue Feb 26 17:45:29 2013 : Debug: log {
Tue Feb 26 17:45:29 2013 : Debug: stripped_names = no
Tue Feb 26 17:45:29 2013 : Debug: auth = yes
Tue Feb 26 17:45:29 2013 : Debug: auth_badpass = yes
Tue Feb 26 17:45:29 2013 : Debug: auth_goodpass = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: security {
Tue Feb 26 17:45:29 2013 : Debug: max_attributes = 200
Tue Feb 26 17:45:29 2013 : Debug: reject_delay = 1
Tue Feb 26 17:45:29 2013 : Debug: status_server = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: radiusd: #### Loading Realms and Home Servers ####
Tue Feb 26 17:45:29 2013 : Debug: proxy server {
Tue Feb 26 17:45:29 2013 : Debug: retry_delay = 5
Tue Feb 26 17:45:29 2013 : Debug: retry_count = 3
Tue Feb 26 17:45:29 2013 : Debug: default_fallback = no
Tue Feb 26 17:45:29 2013 : Debug: dead_time = 120
Tue Feb 26 17:45:29 2013 : Debug: wake_all_if_all_dead = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: home_server localhost {
Tue Feb 26 17:45:29 2013 : Debug: ipaddr = 127.0.0.1
Tue Feb 26 17:45:29 2013 : Debug: port = 1812
Tue Feb 26 17:45:29 2013 : Debug: type = "auth"
Tue Feb 26 17:45:29 2013 : Debug: secret = "******"
Tue Feb 26 17:45:29 2013 : Debug: response_window = 20
Tue Feb 26 17:45:29 2013 : Debug: max_outstanding = 65536
Tue Feb 26 17:45:29 2013 : Debug: require_message_authenticator = no
Tue Feb 26 17:45:29 2013 : Debug: zombie_period = 40
Tue Feb 26 17:45:29 2013 : Debug: status_check = "status-server"
Tue Feb 26 17:45:29 2013 : Debug: ping_interval = 30
Tue Feb 26 17:45:29 2013 : Debug: check_interval = 30
Tue Feb 26 17:45:29 2013 : Debug: num_answers_to_alive = 3
Tue Feb 26 17:45:29 2013 : Debug: num_pings_to_alive = 3
Tue Feb 26 17:45:29 2013 : Debug: revive_interval = 120
Tue Feb 26 17:45:29 2013 : Debug: status_check_timeout = 4
Tue Feb 26 17:45:29 2013 : Debug: coa {
Tue Feb 26 17:45:29 2013 : Debug: irt = 2
Tue Feb 26 17:45:29 2013 : Debug: mrt = 16
Tue Feb 26 17:45:29 2013 : Debug: mrc = 5
Tue Feb 26 17:45:29 2013 : Debug: mrd = 30
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: home_server_pool my_auth_failover {
Tue Feb 26 17:45:29 2013 : Debug: type = fail-over
Tue Feb 26 17:45:29 2013 : Debug: home_server = localhost
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: realm example.com {
Tue Feb 26 17:45:29 2013 : Debug: auth_pool = my_auth_failover
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: realm LOCAL {
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: radiusd: #### Loading Clients ####
Tue Feb 26 17:45:29 2013 : Debug: client localhost {
Tue Feb 26 17:45:29 2013 : Debug: ipaddr = 127.0.0.1
Tue Feb 26 17:45:29 2013 : Debug: require_message_authenticator = no
Tue Feb 26 17:45:29 2013 : Debug: secret = "*****"
Tue Feb 26 17:45:29 2013 : Debug: nastype = "other"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: client 10.0.10.0/24 {
Tue Feb 26 17:45:29 2013 : Debug: require_message_authenticator = no
Tue Feb 26 17:45:29 2013 : Debug: secret = "******"
Tue Feb 26 17:45:29 2013 : Debug: shortname = "wireless"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: radiusd: #### Instantiating modules ####
Tue Feb 26 17:45:29 2013 : Debug: instantiate {
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_exec, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_exec
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "exec" from file /etc/freeradius/modules/exec
Tue Feb 26 17:45:29 2013 : Debug: exec {
Tue Feb 26 17:45:29 2013 : Debug: wait = no
Tue Feb 26 17:45:29 2013 : Debug: input_pairs = "request"
Tue Feb 26 17:45:29 2013 : Debug: shell_escape = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_expr, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_expr
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "expr" from file /etc/freeradius/modules/expr
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_expiration, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_expiration
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "expiration" from file /etc/freeradius/modules/expiration
Tue Feb 26 17:45:29 2013 : Debug: expiration {
Tue Feb 26 17:45:29 2013 : Debug: reply-message = "Password Has Expired "
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_logintime, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_logintime
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "logintime" from file /etc/freeradius/modules/logintime
Tue Feb 26 17:45:29 2013 : Debug: logintime {
Tue Feb 26 17:45:29 2013 : Debug: reply-message = "You are calling outside your allowed timespan "
Tue Feb 26 17:45:29 2013 : Debug: minimum-timeout = 60
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: radiusd: #### Loading Virtual Servers ####
Tue Feb 26 17:45:29 2013 : Debug: server { # from file /etc/freeradius/radiusd.conf
Tue Feb 26 17:45:29 2013 : Debug: modules {
Tue Feb 26 17:45:29 2013 : Debug: Module: Creating Auth-Type = ucsbnetid
Tue Feb 26 17:45:29 2013 : Debug: Module: Creating Post-Auth-Type = REJECT
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking authenticate {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_pap, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_pap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "pap" from file /etc/freeradius/modules/pap
Tue Feb 26 17:45:29 2013 : Debug: pap {
Tue Feb 26 17:45:29 2013 : Debug: encryption_scheme = "auto"
Tue Feb 26 17:45:29 2013 : Debug: auto_header = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_chap, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_chap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "chap" from file /etc/freeradius/modules/chap
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_mschap, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_mschap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "mschap" from file /etc/freeradius/modules/mschap
Tue Feb 26 17:45:29 2013 : Debug: mschap {
Tue Feb 26 17:45:29 2013 : Debug: use_mppe = yes
Tue Feb 26 17:45:29 2013 : Debug: require_encryption = no
Tue Feb 26 17:45:29 2013 : Debug: require_strong = no
Tue Feb 26 17:45:29 2013 : Debug: with_ntdomain_hack = no
Tue Feb 26 17:45:29 2013 : Debug: allow_retry = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_ldap, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_ldap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "ucsbnetid" from file /etc/freeradius/modules/ldap
Tue Feb 26 17:45:29 2013 : Debug: ldap ucsbnetid {
Tue Feb 26 17:45:29 2013 : Debug: server = "directory.ucsb.edu"
Tue Feb 26 17:45:29 2013 : Debug: port = 389
Tue Feb 26 17:45:29 2013 : Debug: password = "******"
Tue Feb 26 17:45:29 2013 : Debug: identity = "uid=chemrad,o=ucsb"
Tue Feb 26 17:45:29 2013 : Debug: net_timeout = 1
Tue Feb 26 17:45:29 2013 : Debug: timeout = 4
Tue Feb 26 17:45:29 2013 : Debug: timelimit = 3
Tue Feb 26 17:45:29 2013 : Debug: tls_mode = no
Tue Feb 26 17:45:29 2013 : Debug: start_tls = no
Tue Feb 26 17:45:29 2013 : Debug: tls_require_cert = "allow"
Tue Feb 26 17:45:29 2013 : Debug: tls {
Tue Feb 26 17:45:29 2013 : Debug: start_tls = no
Tue Feb 26 17:45:29 2013 : Debug: require_cert = "allow"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: basedn = "o=ucsb"
Tue Feb 26 17:45:29 2013 : Debug: filter = "(uid=%{%{Stripped-User-Name}:-%{User-Name}})"
Tue Feb 26 17:45:29 2013 : Debug: base_filter = "(objectclass=ucsbperson)"
Tue Feb 26 17:45:29 2013 : Debug: auto_header = no
Tue Feb 26 17:45:29 2013 : Debug: access_attr_used_for_allow = yes
Tue Feb 26 17:45:29 2013 : Debug: groupname_attribute = "cn"
Tue Feb 26 17:45:29 2013 : Debug: groupmembership_filter = "(|(&(objectClass=GroupOfNames)(member=%{Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{Ldap-UserDn})))"
Tue Feb 26 17:45:29 2013 : Debug: dictionary_mapping = "/etc/freeradius/ldap.attrmap"
Tue Feb 26 17:45:29 2013 : Debug: ldap_debug = 0
Tue Feb 26 17:45:29 2013 : Debug: ldap_connections_number = 5
Tue Feb 26 17:45:29 2013 : Debug: compare_check_items = no
Tue Feb 26 17:45:29 2013 : Debug: do_xlat = yes
Tue Feb 26 17:45:29 2013 : Debug: edir_account_policy_check = no
Tue Feb 26 17:45:29 2013 : Debug: set_auth_type = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: Registering ldap_groupcmp for Ldap-Group
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: Creating new attribute ucsbnetid-Ldap-Group
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: Registering ldap_groupcmp for ucsbnetid-Ldap-Group
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: Registering ldap_xlat with xlat_name ucsbnetid
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: reading ldap<->radius mappings from file /etc/freeradius/ldap.attrmap
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusCheckItem mapped to RADIUS $GENERIC$
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusReplyItem mapped to RADIUS $GENERIC$
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusAuthType mapped to RADIUS Auth-Type
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusSimultaneousUse mapped to RADIUS Simultaneous-Use
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusCalledStationId mapped to RADIUS Called-Station-Id
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusCallingStationId mapped to RADIUS Calling-Station-Id
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP lmPassword mapped to RADIUS LM-Password
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP ntPassword mapped to RADIUS NT-Password
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP sambaLmPassword mapped to RADIUS LM-Password
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP sambaNtPassword mapped to RADIUS NT-Password
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP dBCSPwd mapped to RADIUS LM-Password
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP acctFlags mapped to RADIUS SMB-Account-CTRL-TEXT
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusExpiration mapped to RADIUS Expiration
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusNASIpAddress mapped to RADIUS NAS-IP-Address
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusServiceType mapped to RADIUS Service-Type
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedProtocol mapped to RADIUS Framed-Protocol
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedIPAddress mapped to RADIUS Framed-IP-Address
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedIPNetmask mapped to RADIUS Framed-IP-Netmask
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedRoute mapped to RADIUS Framed-Route
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedRouting mapped to RADIUS Framed-Routing
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFilterId mapped to RADIUS Filter-Id
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedMTU mapped to RADIUS Framed-MTU
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedCompression mapped to RADIUS Framed-Compression
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginIPHost mapped to RADIUS Login-IP-Host
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginService mapped to RADIUS Login-Service
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginTCPPort mapped to RADIUS Login-TCP-Port
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusCallbackNumber mapped to RADIUS Callback-Number
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusCallbackId mapped to RADIUS Callback-Id
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedIPXNetwork mapped to RADIUS Framed-IPX-Network
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusClass mapped to RADIUS Class
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusSessionTimeout mapped to RADIUS Session-Timeout
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusIdleTimeout mapped to RADIUS Idle-Timeout
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusTerminationAction mapped to RADIUS Termination-Action
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginLATService mapped to RADIUS Login-LAT-Service
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginLATNode mapped to RADIUS Login-LAT-Node
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginLATGroup mapped to RADIUS Login-LAT-Group
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedAppleTalkLink mapped to RADIUS Framed-AppleTalk-Link
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedAppleTalkNetwork mapped to RADIUS Framed-AppleTalk-Network
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusFramedAppleTalkZone mapped to RADIUS Framed-AppleTalk-Zone
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusPortLimit mapped to RADIUS Port-Limit
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusLoginLATPort mapped to RADIUS Login-LAT-Port
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusReplyMessage mapped to RADIUS Reply-Message
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusTunnelType mapped to RADIUS Tunnel-Type
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusTunnelMediumType mapped to RADIUS Tunnel-Medium-Type
Tue Feb 26 17:45:29 2013 : Debug: rlm_ldap: LDAP radiusTunnelPrivateGroupId mapped to RADIUS Tunnel-Private-Group-Id
Tue Feb 26 17:45:29 2013 : Debug: conns: 0x1180af0
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_eap, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_eap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "eap" from file /etc/freeradius/eap.conf
Tue Feb 26 17:45:29 2013 : Debug: eap {
Tue Feb 26 17:45:29 2013 : Debug: default_eap_type = "md5"
Tue Feb 26 17:45:29 2013 : Debug: timer_expire = 60
Tue Feb 26 17:45:29 2013 : Debug: ignore_unknown_eap_types = no
Tue Feb 26 17:45:29 2013 : Debug: cisco_accounting_username_bug = no
Tue Feb 26 17:45:29 2013 : Debug: max_sessions = 4096
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_md5
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-md5
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_leap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-leap
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_gtc
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-gtc
Tue Feb 26 17:45:29 2013 : Debug: gtc {
Tue Feb 26 17:45:29 2013 : Debug: challenge = "Password: "
Tue Feb 26 17:45:29 2013 : Debug: auth_type = "PAP"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_tls
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-tls
Tue Feb 26 17:45:29 2013 : Debug: tls {
Tue Feb 26 17:45:29 2013 : Debug: rsa_key_exchange = no
Tue Feb 26 17:45:29 2013 : Debug: dh_key_exchange = yes
Tue Feb 26 17:45:29 2013 : Debug: rsa_key_length = 512
Tue Feb 26 17:45:29 2013 : Debug: dh_key_length = 512
Tue Feb 26 17:45:29 2013 : Debug: verify_depth = 0
Tue Feb 26 17:45:29 2013 : Debug: CA_path = "/etc/freeradius/certs"
Tue Feb 26 17:45:29 2013 : Debug: pem_file_type = yes
Tue Feb 26 17:45:29 2013 : Debug: private_key_file = "/etc/ssl/private/server.key"
Tue Feb 26 17:45:29 2013 : Debug: certificate_file = "/etc/ssl/certs/server.cert.pem"
Tue Feb 26 17:45:29 2013 : Debug: CA_file = "/etc/ssl/certs/server-ca.crt"
Tue Feb 26 17:45:29 2013 : Debug: private_key_password = "****"
Tue Feb 26 17:45:29 2013 : Debug: dh_file = "/etc/freeradius/certs/dh"
Tue Feb 26 17:45:29 2013 : Debug: random_file = "/dev/urandom"
Tue Feb 26 17:45:29 2013 : Debug: fragment_size = 1024
Tue Feb 26 17:45:29 2013 : Debug: include_length = yes
Tue Feb 26 17:45:29 2013 : Debug: check_crl = no
Tue Feb 26 17:45:29 2013 : Debug: cipher_list = "DEFAULT"
Tue Feb 26 17:45:29 2013 : Debug: make_cert_command = "/etc/freeradius/certs/bootstrap"
Tue Feb 26 17:45:29 2013 : Debug: ecdh_curve = "prime256v1"
Tue Feb 26 17:45:29 2013 : Debug: cache {
Tue Feb 26 17:45:29 2013 : Debug: enable = no
Tue Feb 26 17:45:29 2013 : Debug: lifetime = 24
Tue Feb 26 17:45:29 2013 : Debug: max_entries = 255
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: verify {
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_ttls
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-ttls
Tue Feb 26 17:45:29 2013 : Debug: ttls {
Tue Feb 26 17:45:29 2013 : Debug: default_eap_type = "md5"
Tue Feb 26 17:45:29 2013 : Debug: copy_request_to_tunnel = no
Tue Feb 26 17:45:29 2013 : Debug: use_tunneled_reply = no
Tue Feb 26 17:45:29 2013 : Debug: virtual_server = "inner-tunnel"
Tue Feb 26 17:45:29 2013 : Debug: include_length = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_peap
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-peap
Tue Feb 26 17:45:29 2013 : Debug: peap {
Tue Feb 26 17:45:29 2013 : Debug: default_eap_type = "mschapv2"
Tue Feb 26 17:45:29 2013 : Debug: copy_request_to_tunnel = no
Tue Feb 26 17:45:29 2013 : Debug: use_tunneled_reply = no
Tue Feb 26 17:45:29 2013 : Debug: proxy_tunneled_request_as_eap = yes
Tue Feb 26 17:45:29 2013 : Debug: virtual_server = "inner-tunnel"
Tue Feb 26 17:45:29 2013 : Debug: soh = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to sub-module rlm_eap_mschapv2
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating eap-mschapv2
Tue Feb 26 17:45:29 2013 : Debug: mschapv2 {
Tue Feb 26 17:45:29 2013 : Debug: with_ntdomain_hack = no
Tue Feb 26 17:45:29 2013 : Debug: send_error = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking authorize {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_preprocess, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_preprocess
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "preprocess" from file /etc/freeradius/modules/preprocess
Tue Feb 26 17:45:29 2013 : Debug: preprocess {
Tue Feb 26 17:45:29 2013 : Debug: huntgroups = "/etc/freeradius/huntgroups"
Tue Feb 26 17:45:29 2013 : Debug: hints = "/etc/freeradius/hints"
Tue Feb 26 17:45:29 2013 : Debug: with_ascend_hack = no
Tue Feb 26 17:45:29 2013 : Debug: ascend_channels_per_line = 23
Tue Feb 26 17:45:29 2013 : Debug: with_ntdomain_hack = no
Tue Feb 26 17:45:29 2013 : Debug: with_specialix_jetstream_hack = no
Tue Feb 26 17:45:29 2013 : Debug: with_cisco_vsa_hack = no
Tue Feb 26 17:45:29 2013 : Debug: with_alvarion_vsa_hack = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_realm, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_realm
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "suffix" from file /etc/freeradius/modules/realm
Tue Feb 26 17:45:29 2013 : Debug: realm suffix {
Tue Feb 26 17:45:29 2013 : Debug: format = "suffix"
Tue Feb 26 17:45:29 2013 : Debug: delimiter = "@"
Tue Feb 26 17:45:29 2013 : Debug: ignore_default = no
Tue Feb 26 17:45:29 2013 : Debug: ignore_null = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_files, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_files
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "files" from file /etc/freeradius/modules/files
Tue Feb 26 17:45:29 2013 : Debug: files {
Tue Feb 26 17:45:29 2013 : Debug: usersfile = "/etc/freeradius/users"
Tue Feb 26 17:45:29 2013 : Debug: acctusersfile = "/etc/freeradius/acct_users"
Tue Feb 26 17:45:29 2013 : Debug: preproxy_usersfile = "/etc/freeradius/preproxy_users"
Tue Feb 26 17:45:29 2013 : Debug: compat = "no"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_passwd, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_passwd
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "smbpasswd" from file /etc/freeradius/modules/smbpasswd
Tue Feb 26 17:45:29 2013 : Debug: passwd smbpasswd {
Tue Feb 26 17:45:29 2013 : Debug: filename = "/home/smbpasswd"
Tue Feb 26 17:45:29 2013 : Debug: format = "*User-Name::LM-Password:NT-Password:SMB-Account-CTRL-TEXT::"
Tue Feb 26 17:45:29 2013 : Debug: delimiter = ":"
Tue Feb 26 17:45:29 2013 : Debug: ignorenislike = no
Tue Feb 26 17:45:29 2013 : Debug: ignoreempty = yes
Tue Feb 26 17:45:29 2013 : Debug: allowmultiplekeys = no
Tue Feb 26 17:45:29 2013 : Debug: hashsize = 100
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: rlm_passwd: nfields: 7 keyfield 0(User-Name) listable: no
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking preacct {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_acct_unique, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_acct_unique
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "acct_unique" from file /etc/freeradius/modules/acct_unique
Tue Feb 26 17:45:29 2013 : Debug: acct_unique {
Tue Feb 26 17:45:29 2013 : Debug: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking accounting {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_detail, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_detail
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "detail" from file /etc/freeradius/modules/detail
Tue Feb 26 17:45:29 2013 : Debug: detail {
Tue Feb 26 17:45:29 2013 : Debug: detailfile = "/var/log/freeradius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
Tue Feb 26 17:45:29 2013 : Debug: header = "%t"
Tue Feb 26 17:45:29 2013 : Debug: detailperm = 384
Tue Feb 26 17:45:29 2013 : Debug: dirperm = 493
Tue Feb 26 17:45:29 2013 : Debug: locking = no
Tue Feb 26 17:45:29 2013 : Debug: log_packet_header = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_unix, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_unix
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "unix" from file /etc/freeradius/modules/unix
Tue Feb 26 17:45:29 2013 : Debug: unix {
Tue Feb 26 17:45:29 2013 : Debug: radwtmp = "/var/log/freeradius/radwtmp"
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_radutmp, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_radutmp
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "radutmp" from file /etc/freeradius/modules/radutmp
Tue Feb 26 17:45:29 2013 : Debug: radutmp {
Tue Feb 26 17:45:29 2013 : Debug: filename = "/var/log/freeradius/radutmp"
Tue Feb 26 17:45:29 2013 : Debug: username = "%{User-Name}"
Tue Feb 26 17:45:29 2013 : Debug: case_sensitive = yes
Tue Feb 26 17:45:29 2013 : Debug: check_with_nas = yes
Tue Feb 26 17:45:29 2013 : Debug: perm = 384
Tue Feb 26 17:45:29 2013 : Debug: callerid = yes
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: (Loaded rlm_attr_filter, checking if it's valid)
Tue Feb 26 17:45:29 2013 : Debug: Module: Linked to module rlm_attr_filter
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "attr_filter.accounting_response" from file /etc/freeradius/modules/attr_filter
Tue Feb 26 17:45:29 2013 : Debug: attr_filter attr_filter.accounting_response {
Tue Feb 26 17:45:29 2013 : Debug: attrsfile = "/etc/freeradius/attrs.accounting_response"
Tue Feb 26 17:45:29 2013 : Debug: key = "%{User-Name}"
Tue Feb 26 17:45:29 2013 : Debug: relaxed = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking session {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking post-proxy {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking post-auth {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Instantiating module "attr_filter.access_reject" from file /etc/freeradius/modules/attr_filter
Tue Feb 26 17:45:29 2013 : Debug: attr_filter attr_filter.access_reject {
Tue Feb 26 17:45:29 2013 : Debug: attrsfile = "/etc/freeradius/attrs.access_reject"
Tue Feb 26 17:45:29 2013 : Debug: key = "%{User-Name}"
Tue Feb 26 17:45:29 2013 : Debug: relaxed = no
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: } # modules
Tue Feb 26 17:45:29 2013 : Debug: } # server
Tue Feb 26 17:45:29 2013 : Debug: server inner-tunnel { # from file /etc/freeradius/sites-enabled/inner-tunnel
Tue Feb 26 17:45:29 2013 : Debug: modules {
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking authenticate {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking authorize {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking session {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking post-proxy {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: Module: Checking post-auth {...} for more modules to load
Tue Feb 26 17:45:29 2013 : Debug: } # modules
Tue Feb 26 17:45:29 2013 : Debug: } # server
Tue Feb 26 17:45:29 2013 : Debug: radiusd: #### Opening IP addresses and Ports ####
Tue Feb 26 17:45:29 2013 : Debug: listen {
Tue Feb 26 17:45:29 2013 : Debug: type = "auth"
Tue Feb 26 17:45:29 2013 : Debug: ipaddr = *
Tue Feb 26 17:45:29 2013 : Debug: port = 0
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: listen {
Tue Feb 26 17:45:29 2013 : Debug: type = "acct"
Tue Feb 26 17:45:29 2013 : Debug: ipaddr = *
Tue Feb 26 17:45:29 2013 : Debug: port = 0
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Debug: listen {
Tue Feb 26 17:45:29 2013 : Debug: type = "auth"
Tue Feb 26 17:45:29 2013 : Debug: ipaddr = 127.0.0.1
Tue Feb 26 17:45:29 2013 : Debug: port = 18120
Tue Feb 26 17:45:29 2013 : Debug: }
Tue Feb 26 17:45:29 2013 : Info: ... adding new socket proxy address * port 44073
Tue Feb 26 17:45:29 2013 : Debug: Listening on authentication address * port 1812
Tue Feb 26 17:45:29 2013 : Debug: Listening on accounting address * port 1813
Tue Feb 26 17:45:29 2013 : Debug: Listening on authentication address 127.0.0.1 port 18120 as server inner-tunnel
Tue Feb 26 17:45:29 2013 : Debug: Listening on proxy address * port 1814
Tue Feb 26 17:45:29 2013 : Info: Ready to process requests.
rad_recv: Access-Request packet from host 10.0.10.200 port 32775, id=148, length=242
Acct-Session-Id = "309aa422"
NAS-Port = 4
NAS-Port-Type = Wireless-802.11
User-Name = "gcampbell"
Calling-Station-Id = "5C-0A-5B-7D-9C-DA"
Called-Station-Id = "00-24-A8-9A-34-10"
EAP-Message = 0x02d0000e016763616d7062656c6c
NAS-Identifier = "chembiochem"
NAS-IP-Address = 172.107.0.1
Framed-MTU = 1496
Connect-Info = "IEEE802.1X"
Framed-Protocol = PPP
Service-Type = Framed-User
Colubris-AVPair = "ssid=ChemBiochemMobile"
Colubris-AVPair = "group=Default Group"
Colubris-AVPair = "vsc-unique-id=5"
Message-Authenticator = 0xa1ea5c222b3927ebc2eb7b81d3afdf42
Tue Feb 26 17:45:30 2013 : Info: # Executing section authorize from file /etc/freeradius/sites-enabled/default
Tue Feb 26 17:45:30 2013 : Info: +- entering group authorize {...}
Segmentation fault
Here is the ldconfig -v output:
deca:~# ldconfig -v
ldconfig: Path `/lib/x86_64-linux-gnu' given more than once
ldconfig: Path `/usr/lib/x86_64-linux-gnu' given more than once
/usr/local/lib:
/lib/x86_64-linux-gnu:
libgcc_s.so.1 -> libgcc_s.so.1
libreadline.so.6 -> libreadline.so.6.2
libprocps.so.0 -> libprocps.so.0.0.1
libnss_files.so.2 -> libnss_files-2.13.so
libnss_nis.so.2 -> libnss_nis-2.13.so
libpamc.so.0 -> libpamc.so.0.82.1
libcom_err.so.2 -> libcom_err.so.2.1
libncurses.so.5 -> libncurses.so.5.9
libsystemd-login.so.0 -> libsystemd-login.so.0.2.1
libcidn.so.1 -> libcidn-2.13.so
libgssglue.so.1 -> libgssglue.so.1.0.0
libbz2.so.1.0 -> libbz2.so.1.0.4
ld-linux-x86-64.so.2 -> ld-2.13.so
libpam_misc.so.0 -> libpam_misc.so.0.82.0
libSegFault.so -> libSegFault.so
libc.so.6 -> libc-2.13.so
libsysfs.so.2 -> libsysfs.so.2.0.1
libBrokenLocale.so.1 -> libBrokenLocale-2.13.so
libtirpc.so.1 -> libtirpc.so.1.0.10
libsepol.so.1 -> libsepol.so.1
libreadline.so.5 -> libreadline.so.5.2
libselinux.so.1 -> libselinux.so.1
libcap.so.2 -> libcap.so.2.22
libdbus-1.so.3 -> libdbus-1.so.3.7.2
libnss_nisplus.so.2 -> libnss_nisplus-2.13.so
libdl.so.2 -> libdl-2.13.so
librt.so.1 -> librt-2.13.so
libkeyutils.so.1 -> libkeyutils.so.1.4
libmemusage.so -> libmemusage.so
libncursesw.so.5 -> libncursesw.so.5.9
libmount.so.1 -> libmount.so.1.1.0
libulockmgr.so.1 -> libulockmgr.so.1.0.1
libz.so.1 -> libz.so.1.2.7
libanl.so.1 -> libanl-2.13.so
liblzma.so.5 -> liblzma.so.5.0.0
libslang.so.2 -> libslang.so.2.2.4
libpci.so.3 -> libpci.so.3.1.9
libuuid.so.1 -> libuuid.so.1.3.0
libgcrypt.so.11 -> libgcrypt.so.11.7.0
libext2fs.so.2 -> libext2fs.so.2.4
libutil.so.1 -> libutil-2.13.so
libe2p.so.2 -> libe2p.so.2.3
libhistory.so.6 -> libhistory.so.6.2
libtinfo.so.5 -> libtinfo.so.5.9
libcrypt.so.1 -> libcrypt-2.13.so
libacl.so.1 -> libacl.so.1.1.0
libnl-3.so.200 -> libnl-3.so.200.5.2
libblkid.so.1 -> libblkid.so.1.1.0
libudev.so.0 -> libudev.so.0.13.0
libnss_hesiod.so.2 -> libnss_hesiod-2.13.so
libss.so.2 -> libss.so.2.0
libdevmapper-event.so.1.02.1 -> libdevmapper-event.so.1.02.1
libnfsidmap.so.0 -> libnfsidmap.so.0.3.0
libnss_compat.so.2 -> libnss_compat-2.13.so
libdevmapper.so.1.02.1 -> libdevmapper.so.1.02.1
libbsd.so.0 -> libbsd.so.0.4.2
libusb-1.0.so.0 -> libusb-1.0.so.0.1.0
libm.so.6 -> libm-2.13.so
libnsl.so.1 -> libnsl-2.13.so
libglib-2.0.so.0 -> libglib-2.0.so.0.3200.4
libthread_db.so.1 -> libthread_db-1.0.so
libpng12.so.0 -> libpng12.so.0.49.0
libpthread.so.0 -> libpthread-2.13.so
libnl-genl-3.so.200 -> libnl-genl-3.so.200.5.2
libatm.so.1 -> libatm.so.1.0.0
libnss_dns.so.2 -> libnss_dns-2.13.so
libkmod.so.2 -> libkmod.so.2.1.3
libfuse.so.2 -> libfuse.so.2.9.0
libexpat.so.1 -> libexpat.so.1.6.0
libwrap.so.0 -> libwrap.so.0.7.6
libgpg-error.so.0 -> libgpg-error.so.0.8.0
libpcre.so.3 -> libpcre.so.3.13.1
libpopt.so.0 -> libpopt.so.0.0.0
libusb-0.1.so.4 -> libusb-0.1.so.4.4.4
libattr.so.1 -> libattr.so.1.1.0
libpcprofile.so -> libpcprofile.so
libhistory.so.5 -> libhistory.so.5.2
libresolv.so.2 -> libresolv-2.13.so
libpam.so.0 -> libpam.so.0.83.0
/usr/lib/x86_64-linux-gnu:
libxcb-util.so.0 -> libxcb-util.so.0.0.0
libxcb-render-util.so.0 -> libxcb-render-util.so.0.0.0
libmpc.so.2 -> libmpc.so.2.0.0
libX11-xcb.so.1 -> libX11-xcb.so.1.0.0
libescpr.so.1 -> libescpr.so.1.0.0
libdbus-glib-1.so.2 -> libdbus-glib-1.so.2.2.2
libcupsdriver.so.1 -> libcupsdriver.so.1
libquadmath.so.0 -> libquadmath.so.0.0.0
libXmuu.so.1 -> libXmuu.so.1.0.0
libsoftokn3.so -> libsoftokn3.so
libgutenprint.so.2 -> libgutenprint.so.2.1.0
libplds4.so -> libplds4.so.0d
libwbclient.so.0 -> libwbclient.so.0
libnssdbm3.so -> libnssdbm3.so
libgdk_pixbuf-2.0.so.0 -> libgdk_pixbuf-2.0.so.0.2600.1
libgdk_pixbuf_xlib-2.0.so.0 -> libgdk_pixbuf_xlib-2.0.so.0.2600.1
libnssckbi.so -> libnssckbi.so
libgnome-keyring.so.0 -> libgnome-keyring.so.0.2.0
libgconf-2.so.4 -> libgconf-2.so.4.1.5
libitm.so.1 -> libitm.so.1.0.0
libXrandr.so.2 -> libXrandr.so.2.2.0
libXinerama.so.1 -> libXinerama.so.1.0.0
libXaw.so.7 -> libXaw7.so.7.0.0
libnss3.so -> libnss3.so.1d
libXpm.so.4 -> libXpm.so.4.11.0
libXcursor.so.1 -> libXcursor.so.1.0.2
libXmu.so.6 -> libXmu.so.6.2.0
libnssutil3.so -> libnssutil3.so.1d
libgdk-x11-2.0.so.0 -> libgdk-x11-2.0.so.0.2400.10
libgtk-x11-2.0.so.0 -> libgtk-x11-2.0.so.0.2400.10
libnotify.so.4 -> libnotify.so.4.0.0
libesd.so.0 -> libesd.so.0.2.39
libgailutil.so.18 -> libgailutil.so.18.0.1
libts-0.0.so.0 -> libts-0.0.so.0.1.1
libnspr4.so -> libnspr4.so.0d
libXdamage.so.1 -> libXdamage.so.1.1.0
libXt.so.6 -> libXt.so.6.0.0
libfreebl3.so -> libfreebl3.so
libICE.so.6 -> libICE.so.6.3.0
libXfixes.so.3 -> libXfixes.so.3.1.0
libtalloc.so.2 -> libtalloc.so.2.0.7
libplc4.so -> libplc4.so.0d
libjpeg.so.62 -> libjpeg.so.62.0.0
libXcomposite.so.1 -> libXcomposite.so.1.0.0
libsmime3.so -> libsmime3.so.1d
libhunspell-1.3.so.0 -> libhunspell-1.3.so.0.0.0
libvpx.so.1 -> libvpx.so.1.1.0
libSM.so.6 -> libSM.so.6.0.1
libssl3.so -> libssl3.so.1d
libXi.so.6 -> libXi.so.6.1.0
libsemanage.so.1 -> libsemanage.so.1
libpcap.so.0.8 -> libpcap.so.1.3.0
libcupsimage.so.2 -> libcupsimage.so.2
libgdbm_compat.so.3 -> libgdbm_compat.so.3.0.0
libgdbm.so.3 -> libgdbm.so.3.0.0
librpcsecgss.so.3 -> librpcsecgss.so.3.0.0
libltdl.so.7 -> libltdl.so.7.3.0
libgd.so.2 -> libgd.so.2.0.0
libjpeg.so.8 -> libjpeg.so.8.4.0
liblcms2.so.2 -> liblcms2.so.2.0.2
libmysqlclient.so.18 -> libmysqlclient_r.so.18.0.0
libcupsppdc.so.1 -> libcupsppdc.so.1
libidn.so.11 -> libidn.so.11.6.8
libatk-1.0.so.0 -> libatk-1.0.so.0.20409.1
libpaper.so.1 -> libpaper.so.1.1.2
libsigc-2.0.so.0 -> libsigc-2.0.so.0.0.0
libapt-pkg.so.4.12 -> libapt-pkg.so.4.12.0
libXext.so.6 -> libXext.so.6.4.0
libapt-inst.so.1.5 -> libapt-inst.so.1.5.0
libasound.so.2 -> libasound.so.2.0.0
libjbig.so.0 -> libjbig.so.0.0.0
liblber-2.4.so.2 -> liblber.so
libopenjpeg.so.2 -> libopenjpeg-2.1.3.0.so
libtiff.so.4 -> libtiff.so.4.3.6
liblockfile.so.1 -> liblockfile.so.1.0
libpipeline.so.1 -> libpipeline.so.1.2.1
libustr-1.0.so.1 -> libustr-1.0.so.1.0.4
libsensors.so.4 -> libsensors.so.4.3.2
libsasl2.so.2 -> libsasl2.so.2.0.25
libsqlite3.so.0 -> libsqlite3.so.0.8.6
libavahi-client.so.3 -> libavahi-client.so.3.2.9
libssl.so.1.0.0 -> libssl.so.1.0.0
libcrypto.so.1.0.0 -> libcrypto.so.1.0.0
libart_lgpl_2.so.2 -> libart_lgpl_2.so.2.3.21
libtasn1.so.3 -> libtasn1.so.3.1.16
libavahi-core.so.7 -> libavahi-core.so.7.0.2
libgnutls.so.26 -> libgnutls.so.26.22.4
libgnutls-extra.so.26 -> libgnutls-extra.so.26.22.4
libldap_r-2.4.so.2 -> libldap_r.so
libcupsmime.so.1 -> libcupsmime.so.1
libmagic.so.1 -> libmagic.so.1.0.0
libgpm.so.2 -> libgpm.so.2
libedit.so.2 -> libedit.so.2.11
libnewt.so.0.52 -> libnewt.so.0.52.14
libp11-kit.so.0 -> libp11-kit.so.0.0.0
libpoppler.so.19 -> libpoppler.so.19.0.0
libcups.so.2 -> libcups.so.2
libkrb5support.so.0 -> libkrb5support.so.0.1
liblcms.so.1 -> liblcms.so.1.0.19
libavahi-common.so.3 -> libavahi-common.so.3.5.3
libavahi-glib.so.1 -> libavahi-glib.so.1.0.2
libjasper.so.1 -> libjasper.so.1.0.0
libk5crypto.so.3 -> libk5crypto.so.3.1
libaudiofile.so.1 -> libaudiofile.so.1.0.0
libgssapi_krb5.so.2 -> libgssapi_krb5.so.2.2
libcupsfilters.so.1 -> libcupsfilters.so.1
libtokyocabinet.so.9 -> libtokyocabinet.so.9.10.0
libevent-2.0.so.5 -> libevent-2.0.so.5.1.7
libtdb.so.1 -> libtdb.so.1.2.10
libcupscgi.so.1 -> libcupscgi.so.1
libxml2.so.2 -> libxml2.so.2.8.0
libgio-2.0.so.0 -> libgio-2.0.so.0.3200.4
libgmodule-2.0.so.0 -> libgmodule-2.0.so.0.3200.4
libgthread-2.0.so.0 -> libgthread-2.0.so.0.3200.4
libgobject-2.0.so.0 -> libgobject-2.0.so.0.3200.4
libpangox-1.0.so.0 -> libpangox-1.0.so.0.3000.0
libXft.so.2 -> libXft.so.2.3.1
libdatrie.so.1 -> libdatrie.so.1.1.0
libthai.so.0 -> libthai.so.0.1.7
libpcreposix.so.3 -> libpcreposix.so.3.13.1
libasprintf.so.0 -> libasprintf.so.0.0.0
libpangocairo-1.0.so.0 -> libpangocairo-1.0.so.0.3000.0
libxcb-render.so.0 -> libxcb-render.so.0.0.0
libX11.so.6 -> libX11.so.6.3.0
libxcb.so.1 -> libxcb.so.1.1.0
libtic.so.5 -> libtic.so.5.9
libXdmcp.so.6 -> libXdmcp.so.6.0.0
libXau.so.6 -> libXau.so.6.0.0
libpixman-1.so.0 -> libpixman-1.so.0.26.0
libpangoft2-1.0.so.0 -> libpangoft2-1.0.so.0.3000.0
libfontconfig.so.1 -> libfontconfig.so.1.5.0
libfreetype.so.6 -> libfreetype.so.6.8.1
libexpatw.so.1 -> libexpatw.so.1.6.0
libpango-1.0.so.0 -> libpango-1.0.so.0.3000.0
libformw.so.5 -> libformw.so.5.9
libmenuw.so.5 -> libmenuw.so.5.9
libkrb5.so.3 -> libkrb5.so.3.3
libmpfr.so.4 -> libmpfr.so.4.1.0
libdb-5.1.so -> libdb-5.1.so
libcairo.so.2 -> libcairo.so.2.11200.2
libgmp.so.10 -> libgmp.so.10.0.5
libpangoxft-1.0.so.0 -> libpangoxft-1.0.so.0.3000.0
libffi.so.5 -> libffi.so.5.0.10
libstdc++.so.6 -> libstdc++.so.6.0.17
libpanel.so.5 -> libpanel.so.5.9
libxcb-shm.so.0 -> libxcb-shm.so.0.0.0
libgomp.so.1 -> libgomp.so.1.0.0
libmenu.so.5 -> libmenu.so.5.9
libXrender.so.1 -> libXrender.so.1.3.0
libform.so.5 -> libform.so.5.9
libpanelw.so.5 -> libpanelw.so.5.9
/lib:
libnss_mdns6_minimal.so.2 -> libnss_mdns6_minimal.so.2
libnss_mdns.so.2 -> libnss_mdns.so.2
libip4tc.so.0 -> libip4tc.so.0.1.0
libctutils.so.0 -> libctutils.so.0.0.0
libnss_mdns4_minimal.so.2 -> libnss_mdns4_minimal.so.2
libiptc.so.0 -> libiptc.so.0.0.0
libcfont.so.0 -> libcfont.so.0.0.0
libconsole.so.0 -> libconsole.so.0.0.0
libcap.so.1 -> libcap.so.1.10
libnss_mdns6.so.2 -> libnss_mdns6.so.2
libxtables.so.7 -> libxtables.so.7.0.0
libhandle.so.1 -> libhandle.so.1.0.3
libip6tc.so.0 -> libip6tc.so.0.1.0
libnss_mdns_minimal.so.2 -> libnss_mdns_minimal.so.2
libvolume_id.so.0 -> libvolume_id.so.0.85.0
libipq.so.0 -> libipq.so.0.0.0
libnss_mdns4.so.2 -> libnss_mdns4.so.2
/usr/lib:
libtcl8.5.so.0 -> libtcl8.5.so.0
libgpgme.so.11 -> libgpgme.so.11.7.0
libgpgme-pthread.so.11 -> libgpgme-pthread.so.11.7.0
libgpgme-pth.so.11 -> libgpgme-pth.so.11.7.0
libjbig2dec.so.0 -> libjbig2dec.so.0.0.0
libijs-0.35.so -> libijs-0.35.so
libxdot.so.4 -> libxdot.so.4.0.0
libpathplan.so.4 -> libpathplan.so.4.0.0
libgraph.so.4 -> libgraph.so.4.0.0
libgvc.so.5 -> libgvc.so.5.0.0
libgvpr.so.1 -> libgvpr.so.1.0.0
libpostfix-tls.so.1 -> libpostfix-tls.so.1.0.1
libpostfix-master.so.1 -> libpostfix-master.so.1.0.1
libpostfix-global.so.1 -> libpostfix-global.so.1.0.1
libhpmud.so.0 -> libhpmud.so.0.0.6
libhpip.so.0 -> libhpip.so.0.0.1
libpth.so.20 -> libpth.so.20.0.27
libpostfix-dns.so.1 -> libpostfix-dns.so.1.0.1
libfam.so.0 -> libfam.so.0.0.0
libcgraph.so.5 -> libcgraph.so.5.0.0
libaudiofile.so.0 -> libaudiofile.so.0.0.2
libbonobo-2.so.0 -> libbonobo-2.so.0.0.0
libbonobo-activation.so.4 -> libbonobo-activation.so.4.0.0
libhal.so.1 -> libhal.so.1.0.0
libstartup-notification-1.so.0 -> libstartup-notification-1.so.0.0.0
libhal-storage.so.1 -> libhal-storage.so.1.0.0
libuniquewm-1.0.so.0 -> libuniquewm-1.0.so.0.1.0
libfusion-1.0.so.0 -> libfusion-1.0.so.0.1.0
libdirectfb-1.0.so.0 -> libdirectfb-1.0.so.0.1.0
libdirect-1.0.so.0 -> libdirect-1.0.so.0.1.0
libglade-2.0.so.0 -> libglade-2.0.so.0.0.7
libGeoIPUpdate.so.0 -> libGeoIPUpdate.so.0.0.0
libnfnetlink.so.0 -> libnfnetlink.so.0.2.0
libmysqlclient_r.so.15 -> libmysqlclient_r.so.15.0.0
libnetsnmphelpers.so.15 -> libnetsnmphelpers.so.15.1.2
libmysqlclient.so.15 -> libmysqlclient.so.15.0.0
libORBit-2.so.0 -> libORBit-2.so.0.1.0
libpostfix-util.so.1 -> libpostfix-util.so.1.0.1
libbfd-2.22-system.so -> libbfd-2.22-system.so
libgc.so.1 -> libgc.so.1.0.3
libqdbm.so.14 -> libqdbm.so.14.14.0
libltdl.so.3 -> libltdl.so.3.1.4
libnetsnmp.so.15 -> libnetsnmp.so.15.1.2
libnetsnmpagent.so.15 -> libnetsnmpagent.so.15.1.2
libnetsnmpmibs.so.15 -> libnetsnmpmibs.so.15.1.2
libpython2.4.so.1.0 -> libpython2.4.so.1.0
libsnmp.so.15 -> libsnmp.so.15.1.2
libnetsnmptrapd.so.15 -> libnetsnmptrapd.so.15.1.2
libORBitCosNaming-2.so.0 -> libORBitCosNaming-2.so.0.1.0
libonig.so.2 -> libonig.so.2.0.0
libapr-1.so.0 -> libapr-1.so.0.4.6
libslp.so.1 -> libslp.so.1.0.1
libevent-1.3e.so.1 -> libevent.so.1
libgpm.so.1 -> libgpm.so.1.19.6
libgccpp.so.1 -> libgccpp.so.1.0.3
libORBit-imodule-2.so.0 -> libORBit-imodule-2.so.0.0.0
libexpect.so.5.45 -> libexpect.so.5.45
libisccfg.so.82 -> libisccfg.so.82.0.3
libvte.so.9 -> libvte.so.9.2800.2
libopts.so.25 -> libopts.so.25.10.0
libGeoIP.so.1 -> libGeoIP.so.1.4.8
libopcodes-2.22-system.so -> libopcodes-2.22-system.so
libopencdk.so.8 -> libopencdk.so.8.0.5
liblzo.so.1 -> liblzo.so.1.0.0
libpython2.7.so.1.0 -> libpython2.7.so.1.0
libpq.so.5 -> libpq.so.5.4
libdb-4.2.so -> libdb-4.2.so
libgnutls-extra.so.13 -> libgnutls-extra.so.13.0.9
libgnutls.so.13 -> libgnutls.so.13.0.9
libgnutls-openssl.so.13 -> libgnutls-openssl.so.13.0.9
libldap_r.so.2 -> libldap_r.so.2.0.130
liblber.so.2 -> liblber.so.2.0.130
libaprutil-1.so.0 -> libaprutil-1.so.0.4.1
libgtop-2.0.so.7 -> libgtop-2.0.so.7.2.0
libgnomecanvas-2.so.0 -> libgnomecanvas-2.so.0.3000.3
libIDL-2.so.0 -> libIDL-2.so.0.0.0
libssl.so.0.9.8 -> libssl.so.0.9.8
libcdt.so.4 -> libcdt.so.4.0.0
libcrypto.so.0.9.8 -> libcrypto.so.0.9.8
libisccc.so.80 -> libisccc.so.80.0.2
libmpfr.so.1 -> libmpfr.so.1.1.1
liblwres.so.80 -> liblwres.so.80.0.3
libdb-4.4.so -> libdb.so
libboost_iostreams.so.1.49.0 -> libboost_iostreams.so.1.49.0
libmozjs.so.10d -> libmozjs.so.10d
libisc.so.84 -> libisc.so.84.1.0
libcwidget.so.3 -> libcwidget.so.3.0.0
libdaemon.so.0 -> libdaemon.so.0.5.0
libgs.so.9 -> libgs.so.9.05
libept.so.1.aptpkg4.12 -> libept.so.1.0.5.4.12
libgmp.so.3 -> libgmp.so.3.5.2
libdns.so.88 -> libdns.so.88.1.1
libbind9.so.80 -> libbind9.so.80.0.7
libperl.so.5.14 -> libperl.so.5.14.2
libmp.so.3 -> libmp.so.3.1.16
libxapian.so.22 -> libxapian.so.22.5.0
libdb-4.5.so -> libdb-4.5.so
libdb-4.3.so -> libdb-4.3.so
liblzma.so.2 -> liblzma.so.2.0.0
------
I appreciate any and all assistance!
==================================
Jennifer L. Mehl
Director of Information Technology
Dept. of Chemistry and Biochemistry
2618 PSBN
University of California, Santa Barbara
Santa Barbara, CA 93106-9510
mailto: mehl at chem.ucsb.edu
805-893-4392 (office)
805-451-7486 (cell)
==================================
More information about the Freeradius-Users
mailing list