(RADIATOR) RejectMePls

Hugh Irvine hugh at open.com.au
Sun Jan 6 23:07:39 CST 2002


Hello Alex -

You can turn on a trace 4 debug to see where the request is coming from, and 
if you want to trap this particular username you can do something like this 
(assuming you are using Handlers):

# define Handler to trap a particular username

<Handler User-Name = /Reject-Me-Pls|RejectMePls/>
	<AuthBy INTERNAL>
		DefaultResult REJECT
	</AuthBy>
</Handler>

regards

Hugh


>
> We are having something unusual going on.  We have a particular user that
> is continuously hitting our system that is obviously not valid.  The user
> is Reject-Me-Pls...@(defaultrealm).  And it's counterpart
> RejectMePls@(defaultrealm).  I'm not sure who it is or if it's the
> networks, but we can't figure how they are even getting past our
> authentication and getting rows into our accounting tables.  Now if they
> are in our RadOnline (SessionDatabase) they don't seem to get in, but
> normally do.  Not to mention it's flooding my error logs.  Does anybody
> know anything about this or how this person or whatever is getting
> authenticated when they aren't in the database?  We called Qwest to ask
> them about it and they didn't seem to. Thanks for the help...
>
> Alex Fritz
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.307 / Virus Database: 168 - Release Date: 12/11/2001
>
> -------------------------------------------------------

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list