(RADIATOR) Users Blacklists

Hugh Irvine hugh at open.com.au
Thu Jun 13 06:43:31 CDT 2002


Hello Wilco -

No I don't think that what you show below will work.

You need the AuthColumnDef so that Radiator will do all the right things 
internally to reject the request and so on.

regards

Hugh


On Thu, 13 Jun 2002 17:45, wilco heinneman wrote:
> Hi *,
>
>
> Also close, but not quite there ;-)
>
> All of this are only my thoughts, but you Hugh are the expert.
>
>
> In the select statement of Hugh, you should forget about the quotes
> around "REJECT":
>
>     AuthSelect select REJECT from BLACKLIST \
>                 where USERNAME='%n'
>
>
> or do it like Rolando and leave the quotes:
>
>     AuthSelect select "REJECT: This user is on the BLACKLIST" from \
>                BLACKLIST where USERNAME='%n'
>
> Then you need only one column in the table BLACKLIST:
>
> USERNAME
> someuser
> anotheruser
>
>
>
> If all of this is right, I could make a check I need:
>
> AuthSelect select "REJECT: You should choose channel one" from \
>             RADONLINE_CHANNEL1 where count(*) < 10
>
>
> This should do the following :
> You cannot get Authorized on other Channels if the amount of users on
> Channel 1 is less then 10.
>
> Hugh Irvine wrote:
> > Hello Rolando -
> >
> > You are close, but not quite there.
> >
> > Here is what to do:
> >
> > # Check-Users file
> > # ENTRADA default para chequear la tabla BLACKLIST
> >
> > DEFAULT         Auth-Type = VE_blacklist
> >
> > DEFAULT	Auth-Type = Accept
> >
> >
> > Your BLACKLIST SQL table should contain this:
> >
> > USERNAME	REJECT
> >
> > someuser	Auth-Type = "Reject: This user is on the BLACKLIST"
> >
> > anotheruser	Auth-Type = "Reject: This user is on the BLACKLIST"
> >
> >
> > Here is a snippet of my radius.cfg
> >
> > ----------------------
> >
> > <AuthBy SQL>
> >         Identifier VE_blacklist
> >         DBSource        ......
> >         DBUsername    ......
> >         DBAuth          ......
> >         AuthSelect select "REJECT" from BLACKLIST \
> >                    where USERNAME='%n'
> >         AuthColumnDef 0, GENERIC, check
> >         AccountingTable
> > </AuthBy>

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list