Re: (ASCEND) Denying certain users a radius login (fwd)

To: MegaZone <megazone@livingston.com>
Subject: Re: (ASCEND) Denying certain users a radius login (fwd)
From: Ascend List Serve <ascend@jones.echo-on.net>
Date: Sat, 8 Nov 1997 02:22:23 -0500 (EST)
cc: ascend-users@bungi.com
In-Reply-To: <199711062222.OAA04931@server.livingston.com>
Sender: owner-ascend-users@max.bungi.com

This can be done quite easily with all versions of Livingston radius

In the radiusd.c file you will see where they do a strncmp to verify the 
password.  If the password does not match it returns a -1 otherwise it 
returns a 0.  Standard programming convention.  Just add in a couple of 
lines that also do a strncmp (string compare) on the shell, compare the 
uid or in our case check the class information.  I have also added a 
couple of lines to recognize the expire and change fields in the Unix 
password file.

It gives us all sorts of options and possible configurations such as 
daytime accounts single and multiple dialup accounts (when used with our 
Msql database patch) easy account suspension and much more.

I also recommend patching the acct.c file to write out a meaningful usage 
file without all the crap.  While it writes out the detail file there is 
no good reason why it also does not open up a user file and write in the 
connection time and seconds for that user as well.

On Thu, 6 Nov 1997, MegaZone wrote:

> Once upon a time Aaron Holtz shaped the electrons to say...
> >1.  Anyone in a particular unix group isn't allowed access
> 
> Livingston RADIUS 2.0.1 does this.  But you have to have at least one
> piece of our HW to legally use it.  I think there are some freeware
> RADIUS servers that spawned from 1.16 that added this on their own too.
> 
> -MZ
> --
> Livingston Enterprises - Chair, Department of Interstitial Affairs
> Phone: 800-458-9966 510-737-2100 FAX: 510-737-2110 megazone@livingston.com
> For support requests: support@livingston.com  <http://www.livingston.com/> 
> Snail mail: 4464 Willow Road, Pleasanton, CA 94588
> 
> 
> ++ Ascend Users Mailing List ++
> To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
> To get FAQ'd:	<http://www.nealis.net/ascend/faq>
> 
++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

References:

(ASCEND) Denying certain users a radius login (fwd)

From: MegaZone <megazone@livingston.com>

Prev by Date: Re: (ASCEND) Liv. Radius with 4048's
Next by Date: Re: (ASCEND) A working OSPF?
Prev by thread: (ASCEND) Denying certain users a radius login (fwd)
Next by thread: (ASCEND) DNS lookups
Index(es):
- Main
- Thread