[prev in list] [next in list] [prev in thread] [next in thread]
List: freeradius-users
Subject: Re[4]: rlm_passwd and realms
From: 3APA3A <3APA3A () SECURITY ! NNOV ! RU>
Date: 2003-04-30 6:04:56
[Download RAW message or body]
Dear Charles Sprickman,
You can configure realm NULL as it shown in proxy.conf example.
Sometimes reading of documentation helps to avoid hacking :)
--Wednesday, April 30, 2003, 2:29:38 AM, you wrote to 3APA3A@security.nnov.ru:
CS> On Wed, 30 Apr 2003, 3APA3A wrote:
>> A: In case you configured realm to strip username, User-Password attribute
>> is not changed. Instead, rlm_realm creates new attribute Stripped-User-Name.
>> All you need is to use Stripped-User-Name instead of User-Name as a key
>> field for passwd file.
CS> What if I expect both stripped and non-stripped. That would be the Q that
CS> follows. I have an ugly proxy hack setup to fix it until we move to our
CS> sql system...
CS> C
>> Wednesday, April 30, 2003, 12:37:55 AM, you wrote:
>>
>> 3> Hello Alan,
>>
>> 3> rlm_passwd does exactly what you tell it to do. If you set realm to
>> 3> strip user name and use Stripped-User-Name instead of User-Name as index
>> 3> for rlm_passwd, it will search the file with stripped user name without
>> 3> realm. I see no why additional option may be required.
>>
>> 3> Wednesday, April 30, 2003, 12:33:44 AM, you wrote:
>>
>> AD>> Charles Sprickman <spork@fasttrackmonkey.com> wrote:
>> >>> However, if I set up realms in such a way that a specified realm, such as
>> >>> "realm.com" should be treated as local like so in realms:
>> >>>
>> >>> realm.com LOCAL
>> >>>
>> >>> I find that rlm_passwd is still being passed the username and realm.
>>
>> AD>> Yes. The rlm_passwd module needs another option to specify the
>> AD>> 'key' to be used to look up the user entry.
>>
>> AD>> Alan DeKok.
>>
>> AD>> -
>> AD>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>>
>>
>>
>>
>>
>>
>> --
>> /3APA3A
>>
>>
>>
CS> -
CS> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
~/ZARAZA
Почтенные ископаемые! Жду от вас дальнейших писем. (Твен)
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic