How is radius.seq file used?
Alan DeKok
aland at deployingradius.com
Mon Jan 11 18:00:04 CET 2016
On Jan 11, 2016, at 11:28 AM, dev <devuan.2 at gmail.com> wrote:
> I'm trying to debug a custom openLDAP module I forked based on the pw-radius contrib module (Ubuntu 14.04 recently migrated from 12.04). I'm using libfreeradius-client2 (v1.1.6-7).
>
> What seems to be happening is the ldap daemon creates the radius.seq file without read/write permissions by the freeradius daemon.
That should be fixed.
> I suspect this is causing slapd to segfault:
>
> slapd[13868]: segfault at 0 ip 00007fc6f521dcd2 sp 00007fc6eeff6e38 error 4 in libfreeradius-client.so.2.0.0[7fc6f5216000+c000]
OK...
> From what I've read, this file is only needed for Radius Accounting. I'm using RADIUS for authenticating One Time Passwords generated on a software token so would like to try disabling radius.seq to see fi the problem goes away.
>
> How can I disable radius.eq?
Modify the code, unfortunately.
From taking a quick look at the source, it looks like the seqfile isn't used for anything. It might be a hold-over from older versions of the server.
In the short term, just use Unix file permissions to make sure that the the user / group file permissions are correct, and allow what you want.
Or, grab the latest code for freeradius-client from github. I've pushed a final fix which removes all references to seqfile.
Alan DeKok.
More information about the Freeradius-Users
mailing list