I am about to release my new version of patched radiusd - call it
unoff2.0.7. I am looking for beta-testers for the pre-release code.
If you are interested, you can get a patch against stock radiusd-2.0 from
ftp://sysadm.sorosis.ro/pub/devel/radius/pre/
The file name is radiusd-2.0-2.0.7pre2.diff.gz.
I have set up a mailing list for discussion about the new features in the
patched version I am releasing. I welcome anybody interested in 'does not
fit the specs' features for the radiusd to subscribe to this list -
programmers as well as users. I know there are a lot of flavours/patched
versions in use, I am only trying to get together users of different
features and versions for an exchange of ideas, maybe for starting a
common project of building a better radiusd. If you want to subscribe,
send a message with 'subscribe' in the subject line to
radius-request@mail.cccis.ro. The address of the list itself will be
radius@mail.cccis.ro.
Now, the current changelog for 2.0.7 (not all features I want to see in
2.0.7 are implemented yet, this is what I've done so far since 2.0.6):
2.0.7:
- now the user-stats database and radlast log file will follow the
parameters supplied in the command line of the radiusd instead of
always using the hardcoded paths.
- added support for limiting the online time of some users during the
peak hours. Added a new program called radwhich. This program is
intended to be run often from crontab, and used in conjunction with
a pm_kill program. See README.radwatch for details.
- added support for /etc/raddb/denyuser file. This file contains one
username per line. For users listed here the authentication will be
denied regardless of any other settings. You can use @group instead
of an username to get this restriction automatically applied to all
members of some group (talking about UNIX user group here...)
- radiusd now is writting one radlast log file per month (automatically
created)
- radiusd is logging with LOG_NOTICE failed authetications and their
reasons.
(thanks to Tim Moloney <moloney@netsrq.com>)
- radlist command enhanced. Now the extended output for the active users
shows the connection type (PPP, SLIP, TELNET, etc.) and the IP address
associated with this service.
- reports that the previous version (2.0.6) compile and runs on many
Linux flavors, BSDI 2.1, HP-UX 9.xx and Solaris 2.4. Chances are that
this version won't break this.
- radlast command provided for keeping track of the PMs usage. The
database used to store the information is located by default in
/var/log/radlast (defined in radius.h). Note that this database is
_not_ compatible with the standard UNIX last program.
- all previous extensions (except shadow and MD5 support) are now
enabled by default.
So, if you are interested in any of the above mentioned changes, please
give it a shot and report success/horror stories.
Thank you & best wishes,
Cristian Gafton
-- -------------------------------------------------------------------- Cristian Gafton gafton@sorosis.ro Computers & Communications Center Network Administrator http://www.sorosis.ro/~gafton Iasi, Romania ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ UNIX is user friendly. It's just selective about who its friends are.