(RADIATOR) Bad authenticator for proxied Disconnect-Request
Mike McCauley
mikem at open.com.au
Wed Apr 21 17:26:36 CDT 2004
Hello Arjan,
Thanks for the patch.
It has been applied, and the patched Radius.pm is now available in the 3.9
patches area.
Thanks again, and we apologise for any inconvenience.
Cheers.
On Thu, 22 Apr 2004 12:13 am, Arjan Waardenburg wrote:
> Hi,
>
> During testing with Disconnect-Request we noticed that Radiator did not
> set the authenticator in the forwarded packet to 16 zero octets before
> calculating the MD5 hash. Below is the unified diff to fix this.
>
> Regards
> Arjan Waardenburg
>
> --- Radius.pm 2004-04-21 16:02:42.000000000 +0200
> +++ Radius.new 2004-04-21 16:04:58.000000000 +0200
> @@ -917,7 +917,8 @@
>
> my $code = $self->code; # speedup
> $self->set_authenticator("\000" x 16)
> - if $code eq 'Accounting-Request';
> + if ($code eq 'Accounting-Request'
> + || $code eq 'Disconnect-Request');
> my $rec = $self->pack;
> $self->{Packet} = $rec;
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
--
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia http://www.open.com.au
Phone +61 7 5598-7474 Fax +61 7 5598-7070
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP etc on Unix, Windows, MacOS etc.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list