rlm_digest failing after upgrade from 2.1.12 to 2.2.5
Alan DeKok
aland at deployingradius.com
Thu Oct 22 17:07:11 CEST 2015
On Oct 22, 2015, at 3:21 AM, Daniel Pocock <daniel at pocock.pro> wrote:
>> We tried that, we can see freeradius is authorizing the requests
>>
>> libfreeradius-client is logging the following:
>>
>> rc_check_reply: received invalid reply digest from RADIUS server
So the shared secret is wrong.
> I disabled the check in the libfreeradius-client code and everything
> else appears to work (commenting out the return BADRESP_RC):
Which means anyone can forge replies to authentication packets.
Don't do that. Fix the shared secret.
Alan DeKok.
More information about the Freeradius-Users
mailing list