[RADIATOR] Two "@" in User-Name: first Realm is used

Roland Rosenfeld rrosenfeld at netcologne.de
Tue Sep 16 06:50:27 CDT 2014


Hi!

I noticed the following problem:

I have a

<Handler Realm=/^net(cologne|aachen)\.de$/i>
         ...
</Handler>

or alternatively

<Realm /^net(cologne|aachen)\.de$/i>
         ...
</Realm>

defined.  I expected those to match on user at netcologne.de and
user at netaachen.de, but my logs show, that also user at netcologne.de@foo
(with two @ signs in the User-Name) gets access here.

I'd like to keep out users with multiple "@" signs in their
User-Name.  Any idea how to enforce this?

In the manual I found the difference between %R (everything following
the _first_ @ sign in the User-Name) and %K (everything following the
_last_ @ sign in the User-Name), so there seems to be some logic about
multiple @ signs, but how can I use this for my Realm matching?

Tschoeeee

        Roland


More information about the radiator mailing list