(RADIATOR) confirm - password should be min 16 octects min

Mike McCauley mikem at open.com.au
Fri Aug 27 18:21:13 CDT 2004


Hello,

According to the spec, the Password attribute should always be a multiple of 
16 octets.

Cheers.

On Friday 27 August 2004 21:16, Tariq Rashid wrote:
> we're trying to locate a problem between a lucent stinger and a radiator
> server.
>
> all normal requests have the Password and Chap-Password fields with 16 and
> 17 octects respectively - as seen in the trace 5 logs. This is as per
> protocol.
>
> however, the problem stinger seems to send "short" passwords such as :
>
>         Password = "<249>!<19><31><236><170><172>"
>         Password = "<252><7><217><213><237><134><130>"
>         Password = "<249>!<19><31><236><170><172>"
>
> and so on .. these are less than the normal:
>         Password = "<215>y<160><1>F<224><193><187>OM<'<0><222><197><227>"
> - 16 octects
>         CHAP-Password =
> <1><193><202>t<186><136><24><147><145><210>n<233>.{9!;   - 17 octects
>
> is this evidence that the problem lucent stinger is malforming its packets?
> or are there valid cases when the Password field is short?
>
> tariq
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.

-- 
Mike McCauley                               mikem at open.com.au
Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia   http://www.open.com.au
Phone +61 7 5598-7474                       Fax   +61 7 5598-7070

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, 
TTLS, PEAP etc on Unix, Windows, MacOS etc.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list