[RADIATOR] AuthNTLM feature requests

Heikki Vatiainen hvn at open.com.au
Fri Aug 22 17:07:17 CDT 2014


On 08/22/2014 10:46 PM, Klara Mall wrote:

> I'm not sure, if I got this. In my patch $challenge is
> set/calculated before $user is changed by the RewriteFunction. But I
> put the RewriteFunction at the same position as the
> UsernameMatchesWithoutRealm rewriting. So I thought this is okay.
> Isn't it?

It's fine. What I was thinking was that if someone wants to try passing
a rewritten username to AuthBy NTLM, they would need to be careful about
what they rewrite and at which point.

Thanks,
Heikki

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.


More information about the radiator mailing list