[bug-notifications] [freeradius 0004940]: freeRADIUS v1.0.1 package is obsolete and may be insecure
Mantis Bug Tracker
noreply at opencsw.org
Fri Apr 27 13:42:53 CEST 2012
A NOTE has been added to this issue.
======================================================================
https://www.opencsw.org/mantis/view.php?id=4940
======================================================================
Reported By: leinenbach
Assigned To: dam
======================================================================
Project: freeradius
Issue ID: 4940
Category: upgrade
Reproducibility: always
Severity: major
Priority: normal
Status: assigned
======================================================================
Date Submitted: 2012-04-24 11:49 CEST
Last Modified: 2012-04-27 13:42 CEST
======================================================================
Summary: freeRADIUS v1.0.1 package is obsolete and may be
insecure
Description:
The freeRADIUS 1.0.1 package is extremely outdated, should not be used and
is insecure. Version 2.x is now recommended, but there's no such package.
Quote:
"As of January 2008, the version 1.1.x releases are no longer actively
maintained. Version 1.1.7 was the last release in that cycle. We recommend
that everyone using Version 1.1.7 (or any earlier version) upgrade to the
latest 2.x release as soon as possible."
Source: http://freeradius.org/download.html
======================================================================
----------------------------------------------------------------------
(0009840) leinenbach (reporter) - 2012-04-27 13:42
https://www.opencsw.org/mantis/view.php?id=4940#c9840
----------------------------------------------------------------------
Now this is actually important:
I found some real problems in:
/etc/opt/csw/init.d/cswfreeradius
Change this line:
RADDBDIR=/etc/opt/csw/raddb
to this line:
RADDBDIR=/etc/opt/csw/freeradius
Then uncomment and change the following lines, so that you use
radius:radius and not radmin:radius
This is how it should look like:
=======8<------------------------------------------------
test -f $RADIUSD || exit
test -f $RADDBDIR/radiusd.conf || exit
if [ ! -d $rundir ] ; then
mkdir $rundir
chown radius:radius $rundir
chmod 775 $rundir
fi
if [ ! -d $logdir ] ; then
mkdir $logdir
chown radius:radius $logdir
chmod 770 $logdir
chmod g+s $logdir
fi
if [ ! -f $logdir/radius.log ]; then
touch $logdir/radius.log
fi
chown radius:radius $logdir/radius.log
chmod 660 $logdir/radius.log
=======8<------------------------------------------------
Then please check your package installation script for creating these
dirs:
/var/run/csw/run/radiusd
/var/run/csw/log/radius
They should have the same name, ownership and permission as in the script
above.
More information about the bug-notifications
mailing list