mån 2007-06-04 klockan 10:46 +0100 skrev Neil A. Hillard:
> Hi,
>
> I'm currently using squid 2.5 stable 6 (I know it's old but it works
> and isn't the root of the problem!). Am using squid_radius_auth against
> out RADIUS server.
Which version of squid_radius_auth?
> request and the response from the RADIUS server giving Access-Reject but
> the authenticator returns OK! The following is an strace of the
> authenticator process:
>
> 10:34:55 read(0, "aaa aaa\n", 1024) = 8
> 10:36:22 time(NULL) = 1180949782
> 10:36:22 send(4,
> "\1\0\0005f\330^\\lZ\106\16\305\271\10\0214UK\30\1\5aaa\2\22\311\215\264\3640\235|\347\2760ooH\27AR\5\6\1\0\0o\4\6\302\251!\n",
> 55, 0) = 55
> 10:36:22 select(5, [4], NULL, NULL, {1, 0}) = 1 (in [4], left {1, 0})
> 10:36:22 recvfrom(4,
> "\2\0\0>\330\256J\36\5U\334D\364S\315u\1\3153T\7\6\0\0\0\1\11\6\337\377\377\376\n\6\0\0\0\0\33\6\0\1R\100\34\6\0\0\16\20\35\6\0\0\0\0\6\6\0\0\0\2",
> 8192, 0, {sa_family=AF_INET, sin_port=htons(1645),
> sin_addr=inet_addr("192.168.0.1")}, [16]) = 62
> 10:36:22 write(2, "Warning: Received invalid reply digest from
> server\n", 51) = 51
> 10:36:22 write(1, "OK\n", 3) = 3
Looks like the version of squid_radius_auth you have is broken.. Which
version is it, and from where did you get it?
Hmm.. looking at my partially maintained copy.. looks like I may have
fixed this exact issue quite some time ago (a year to be exact) but
never published a new copy. Oh well. Version 1.09 now published as
http://www.squid-cache.org/contrib/squid_radius_auth/, please give it a
try.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Sun Jul 01 2007 - 12:00:04 MDT