(RADIATOR) Radiator Verison 3.3 released

Mike McCauley mikem at open.com.au
Mon Aug 26 20:02:18 CDT 2002 

This version of Radiator has been released ahead of schedule in order to close 
off a potential security issue that can effect AuthBy SQL and AuthBy LDAP*. 
We recommend that all operators of Radiator 3.0, 3.1 and 3.2 upgrade to this 
version immediately.


As usual, the new version is available free of charge to current licensees 
from 
http://www.open.com.au/radiator/downloads/Radiator-3.3.tgz
and
http://www.open.com.au/radiator/downloads/Radiator-3.3-1.noarch.rpm

and to current evaluators from 
http://www.open.com.au/radiator/demo-downloads/Radiator-Demo-3.3.tgz
and
http://www.open.com.au/radiator/demo-downloads/Radiator-Demo-3.3-1.noarch.rpm

An extract from the history file is attached

=========================================================
Important Security Update: Removed support for the %Eval special
character syntax due to security issues that can effect AuthBy SQL and
AuthBy LDAP*. We recommend that all operators of Radiator 3.0, 3.1 and
3.2 upgrade to this version immediately.

Testing EAP TTLS with Net_SSLeay-1.20. OK. No patches to Net_SSLeay
are required now.

Added handling for StripFromRequest, AddToRequest and
AddToRequestIfNotExist to Client and AuthBy GROUP.

Default install directory for Radius/*.pm library files changed to be
independent of perl version and for improved RPM installation.

Improved handling of failure to open dictionary. Patched by Frederic
Olivie (alf at club-internet.fr). Thanks Frederic.

Fixed a typo on AuthBy PLATYPUS that can cause an error like: (Missing
operator before EQ?). Reported by Justin White-Lowther
(jw351898 at oak.cats.ohiou.edu).

Added goodies/rcradiator, a Linux LSB compliant startup script,
contributed by Carlos Ra?úl Perasso (carlosrp at idea.com.py). Thanks
Carlos.

AuthBy GROUP was incorrectly checking DefaultSimultaneousUse for
accounting as well as Access-Request packets. Reported by "James
M. Luedke" (james at enabledsites.com).


-- 
Mike McCauley                               mikem at open.com.au
Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia   http://www.open.com.au
Phone +61 3 9598-0985                       Fax   +61 3 9598-0955

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc 
on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X etc etc

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list