| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
| |
Latest stable release, contains security fixes for EAP-PWD.
Signed-off-by: Robby K <robbyke@gmail.com>
|
| |
|
|
| |
Signed-off-by: Robby K <robbyke@gmail.com>
|
| |
|
|
| |
Signed-off-by: Robby K <robbyke@gmail.com>
|
| |
|
|
| |
Signed-off-by: David Yang <mmyangfl@gmail.com>
|
| |
|
|
| |
Signed-off-by: David Yang <mmyangfl@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
This applies a patch from upstream that avoids a call to ENGINE_cleanup
when the openssl library was built without engine support.
A workaround for a missing header check was used to silence a warning
about the implicit definition of RAND_load_file. A proper fix has been
merged upstream as well.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
This enables the EAP-PWD module, which allows for logging in with only
a username and password, while still being secure (see the links below
for the details of this EAP method, if interested).
https://en.wikipedia.org/wiki/Extensible_Authentication_Protocol#EAP_Password_(EAP-PWD)
Also found this blog post which talks about EAP-PWD and its benefits:
https://dustri.org/b/eap-pwd-wifi-security-done-right.html
Signed-off-by: Robby K <robbyke@gmail.com>
|
| |
|
|
|
|
| |
Latest stable release, support for openssl 1.1
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
|
| |
|
|
|
|
| |
This takes the fix for CVE-2017-9148 from Debian.
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
|
| |
|
|
|
|
|
|
|
|
| |
fix Makefile chmod (644)
replace MD5SUM with HASH
add PKG_MIRROR_HASH when PKG_SOURCE_PROTO:=git
(PKG_SOURCE_PROTO:=svn tarballs are not reproducible for now)
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
|
| |\
| |
| | |
freeradius3: build and package support for LDAP
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
The lack of LDAP support was one of the things which prevented users
from migrating from freeradius2 to freeradius3.
Enable LDAP in freeradius3 so we can finally burry freeradius2.
Reported-by: Martin Mueller <mm@sig21.net>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | |
| |
| |
| |
| |
| | |
Forgot to bump the package release in commit 424f4e2c.
Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
|
| |/
|
|
|
|
|
|
|
|
|
|
|
| |
- Moves /etc/freeradius3/sites-{enabled,available}/inner-tunnel to be part of
the freeradius3-mod-eap package. This prevents conflicts between
freeradius3-mod-eap-peap and freeradius3-mod-eap-ttls which both included the
file before. This fixes LEDE bug FS#678.
- Change the demo cert validity to be 1 year instead of 60 days. Should keep the
cert valid for the duration of the LEDE release cycle (with some slack). This
fixes #4239.
Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This fixes two issues with the freeradius package init scripts:
- The package installs libraries in /usr/lib/freeradius{2,3}, but the
musl dynamic linker won't find them there unless LD_LIBRARY_PATH is
set to include this directory. This adds an appropriate env statement
to the procd init setup.
- procd expects services to stay in the foreground, or it will be unable
to properly shut them down again. This adds the -f flag to radiusd to
achieve that.
Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
|
|
|
freeradius-server version 2.x has been marked End-Of-Life.
This commit adds freeradius-server version 3.0.11 in a new package.
This commit also introduces the option "freeradius3-default"
which activate all modules needed to run radiusd with its default
configuration.
- rlm_digest (HTTP Digest Authentication) has been added
- rlm_unix (System Authentication) has been added
- rlm_attr_rewrite has been deleted
Note that SQL and LDAP support has been disabled.
Signed-off-by: Lucile Quirion <lucile.quirion@savoirfairelinux.com>
|