rlm_digest failing after upgrade from 2.1.12 to 2.2.5

Alan DeKok aland at deployingradius.com
Thu Oct 22 17:07:11 CEST 2015

On Oct 22, 2015, at 3:21 AM, Daniel Pocock <daniel at pocock.pro> wrote:
>> We tried that, we can see freeradius is authorizing the requests
>> libfreeradius-client is logging the following:
>> rc_check_reply: received invalid reply digest from RADIUS server

  So the shared secret is wrong.

> I disabled the check in the libfreeradius-client code and everything
> else appears to work (commenting out the return BADRESP_RC):

  Which means anyone can forge replies to authentication packets.

  Don't do that.  Fix the shared secret.

  Alan DeKok.

More information about the Freeradius-Users mailing list