Koozali.org: home of the SME Server

Obsolete Releases => SME 7.x Contribs => Topic started by: scarab on January 16, 2007, 11:40:09 AM

Title: Mod_auth_radius help needed
Post by: scarab on January 16, 2007, 11:40:09 AM: Need to authenticate the webserver against an external radius server (token server). On 6.5 used the mod_auth_radius for this very efficiently (http://www.freeradius.org/mod_auth_radius).

However cannot find an rpm, nor can compile the module myself correctly on SME 7.1.

Should apxs of apxs2 be used?
Is 'yum install httpd-devel' suffificient or should other components be installed? (on devel server, not for production)

Any help appreciated,

Richard.
Title: Mod_auth_radius help needed
Post by: william_syd on January 16, 2007, 12:45:24 PM: SME 7.1
Code: [Select]
yum --enablerepo=base install httpd-devel
Code: [Select]
Dependencies Resolved ============================================================================= Package Arch Version Repository Size ============================================================================= Installing: httpd-devel i386 2.0.52-28.ent.centos4 base 145 k Installing for dependencies: apr-devel i386 0.9.4-24.5.c4.2 base 503 k apr-util-devel i386 0.9.4-21 base 239 k binutils i386 2.15.92.0.2-21 smeos 2.8 M cpp i386 3.4.6-3 base 1.6 M cyrus-sasl-devel i386 2.1.19-5.EL4 base 1.3 M db4-devel i386 4.2.52-7.1 base 1.8 M expat-devel i386 1.95.7-4 base 118 k gcc i386 3.4.6-3 base 4.4 M glibc-devel i386 2.3.4-2.25 base 1.9 M glibc-headers i386 2.3.4-2.25 base 582 k glibc-kernheaders i386 2.4-9.1.98.EL base 693 k openldap-devel i386 2.2.13-6.4E base 1.3 M pcre-devel i386 4.5-3.2.RHEL4 base 96 k Transaction Summary ============================================================================= Install 14 Package(s) Update 0 Package(s) Remove 0 Package(s) Total download size: 18 M
Title: Segmentation fault Apache - mod_auth_radius-2.0 needed
Post by: scarab on January 17, 2007, 01:49:40 PM: Compiling goes ok, however when using the module it gives a segmentation fault on Apache:

[notice] child pid 4370 exit signal Segmentation fault (11)

Because the module is out for quite some time now, my guess is the compiling in fact didn't go ok.

Does anyone have a compiled mod_auth_radius-2.0.so?
Title: Mod_auth_radius help needed
Post by: william_syd on January 17, 2007, 02:49:50 PM: Have you seen this one ?

Still have to compile though.

http://www.outoforder.cc/projects/apache/mod_auth_xradius/
Title: Mod_auth_radius help needed
Post by: scarab on January 17, 2007, 08:19:10 PM: Thanks for taking time to reply William,

No luck there, yet.

Will look into the xradius further,

Thank you,

Richard.
Title: Mod_auth_radius help needed
Post by: scarab on January 21, 2007, 10:24:47 PM: The module works on a full FreeBSD system without a problem. So there must be a problem during the compilation of the module or in the configuration with the Apache on SME. The module keeps segfaulting the entire apache (status down, want up).

Badly enough I do not have a spare system to install the full Centos 4.4 and try that one out.

Maybe someone can help me and compile mod_auth_radius on a (full) centos system?

http://www.freeradius.org/mod_auth_radius/

Thx,

Richard.
Title: Mod_auth_radius help needed
Post by: scarab on January 30, 2007, 12:26:55 AM: Got it working. There were a few incompatability issues in the module.

If anyone needs the module I can mail it to you.

Only wise to use radius authentication on the web if you use OTP (one-time-passwords)
Title: Mod_auth_radius help needed
Post by: Franco on January 30, 2007, 01:11:10 AM: stuntshell [ ] gmail.com
would love to try!
How are you playing with it?
Title: Mod_auth_radius help needed
Post by: scarab on January 30, 2007, 11:35:49 AM: In stead of pwauth the authentication is done by the mod_auth_radius module. It authenticates against an external radius server wich is in fact a AAA-server for one-time-passwords (safeword tokens).

Will mail it tonight.