SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for freeradius-devel-2.1.7-2.fc12.i686.rpm :
Wed Sep 16 14:00:00 2009 Tomas Mraz - 2.1.7-2
- use password-auth common PAM configuration instead of system-auth

Tue Sep 15 14:00:00 2009 John Dennis - 2.1.7-1
- enable building of the rlm_wimax module
- pcap wire analysis support is enabled and available in utils subpackage
- Resolves bug #523053 radtest manpage in wrong package
- update to latest upstream release, from upstream Changelog:
Feature improvements

* Full support for CoA and Disconnect packets as per RFC 3576
and RFC 5176. Both receiving and proxying CoA is supported.

* Added \"src_ipaddr\" configuration to \"home_server\". See
proxy.conf for details.

* radsniff now accepts -I, to read from a filename instead of
a device.

* radsniff also prints matching requests and any responses to those
requests when \'-r\' is used.

* Added example of attr_filter for Access-Challenge packets

* Added support for udpfromto in DHCP code

* radmin can now selectively mark modules alive/dead.
See \"set module state\".

* Added customizable messages on login success/fail.
See msg_goodpass && msg_badpass in log{} section of radiusd.conf

* Document \"chase_referrals\" and \"rebind\" in raddb/modules/ldap

* Preliminary implementation of DHCP relay.

* Made thread pool section optional. If it doesn\'t exist,
the server will run single-threaded.

* Added sample radrelay.conf for people upgrading from 1.x

* Made proxying more stable by failing over, rather than
rejecting the first request. See \"response_window\" in proxy.conf

* Allow home_server_pools to exist without realms.

* Add dictionary.iea (closes bug #7)

* Added support for RFC 5580

* Added experimental sql_freetds module from Gabriel Blanchard.

* Updated dictionary.foundry

* Added sample configuration for MySQL cluster in raddb/sql/ndb
See the README file for explanations.
Bug fixes

* Fixed corner case where proxied packets could have extra
character in User-Password attribute. Fix from Niko Tyni.

* Extended size of \"attribute\" field in SQL to 64.

* Fixes to ruby module to be more careful about when it builds.

* Updated Perl module \"configure\" script to check for broken
Perl installations.

* Fix \"status_check = none\". It would still send packets
in some cases.

* Set recursive flag on the proxy mutex, which enables safer
cleanup on some platforms.

* Copy the EAP username verbatim, rather than escaping it.

* Update handling so that robust-proxy-accounting works when
all home servers are down for extended periods of time.

* Look for DHCP option 53 anywhere in the packet, not just
at the start.

* Fix processing of proxy fail handler with virtual servers.

* DHCP code now prints out correct src/dst IP addresses
when sending packets.

* Removed requirement for DHCP to have clients

* Fixed handling of DHCP packets with message-type buried in the packet

* Fixed corner case with negation in unlang.

* Minor fixes to default MySQL & PostgreSQL schemas

* Suppress MSCHAP complaints in debugging mode.

* Fix SQL module for multiple instance, and possible crash on HUP

* Fix permissions for radius.log for sites that change user/group,
but which don\'t create the file before starting radiusd.

* Fix double counting of packets when proxying

* Make %l work

* Fix pthread keys in rlm_perl

* Log reasons for EAP failure (closes bug #8)

* Load home servers and pools that aren\'t referenced from a realm.

* Handle return codes from virtual attributes in \"unlang\"
(e.g. LDAP-Group). This makes \"!(expr)\" work for them.

* Enable VMPS to see contents of virtual server again

* Fix WiMAX module to be consistent with examples. (closes bug #10)

* Fixed crash with policies dependent on NAS-Port comparisons

* Allowed vendor IDs to be be higher than 32767.

* Fix crash on startup with certain regexes in \"hints\" file.

* Fix crash in attr_filter module when packets don\'t exist

* Allow detail file reader to be faster when \"load_factor = 100\"

* Add work-around for build failures with errors related to
lt__PROGRAM__LTX_preloaded_symbols. libltdl / libtool are horrible.

* Made ldap module \"rebind\" option aware of older, incompatible
versions of OpenLDAP.

* Check value of Fall-Through in attr_filter module.

Fri Aug 21 14:00:00 2009 Tomas Mraz - 2.1.6-6
- rebuilt with new openssl

Fri Jul 24 14:00:00 2009 Fedora Release Engineering - 2.1.6-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild

Fri Jul 10 14:00:00 2009 John Dennis - 2.1.6-4
- install COPYRIGHT CREDITS INSTALL LICENSE README into docdir

Tue Jun 23 14:00:00 2009 John Dennis - 2.1.6-3
- resolves bug #507571 freeradius packages do not check for user/group existence

Tue Jun 2 14:00:00 2009 John Dennis - 2.1.6-2
- make /etc/raddb/sites-available/
* be config(noreplace)

Mon May 18 14:00:00 2009 John Dennis - 2.1.6-1
- update to latest upstream release, from upstream Changelog:
Feature improvements

* radclient exits with 0 on successful (accept / ack), and 1
otherwise (no response / reject)

* Added support for %{sql:UPDATE ..}, and insert/delete
Patch from Arran Cudbard-Bell

* Added sample \"do not respond\" policy. See raddb/policy.conf
and raddb/sites-available/do_not_respond

* Cleanups to Suse spec file from Norbert Wegener

* New VSAs for Juniper from Bjorn Mork

* Include more RFC dictionaries in the default install

* More documentation for the WiMAX module

* Added \"chase_referrals\" and \"rebind\" configuration to rlm_ldap.
This helps with Active Directory. See raddb/modules/ldap

* Don\'t load pre/post-proxy if proxying is disabled.

* Added %{md5:...}, which returns MD5 hash in hex.

* Added configurable \"retry_interval\" and \"poll_interval\"
for \"detail\" listeners.

* Added \"delete_mppe_keys\" configuration option to rlm_wimax.
Apparently some WiMAX clients misbehave when they see those keys.

* Added experimental rlm_ruby from
http://github.com/Antti/freeradius-server/tree/master

* Add Tunnel attributes to ldap.attrmap

* Enable virtual servers to be reloaded on HUP. For now, only
the \"authorize\", \"authenticate\", etc. processing sections are
reloaded. Clients and \"listen\" sections are NOT reloaded.

* Updated \"radwatch\" script to be more robust. See scripts/radwatch

* Added certificate compatibility notes in raddb/certs/README,
for compatibility with different operating systems. (i.e. Windows)

* Permit multiple \"-e\" in radmin.

* Add support for originating CoA-Request and Disconnect-Request.
See raddb/sites-available/originate-coa.

* Added \"lifetime\" and \"max_queries\" to raddb/sql.conf.
This helps address the problem of hung SQL sockets.

* Allow packets to be injected via radmin. See \"inject help\"
in radmin.

* Answer VMPS reconfirmation request. Patch from Hermann Lauer.

* Sample logrotate script in scripts/logrotate.freeradius

* Add configurable poll interval for \"detail\" listeners

* New \"raddebug\" command. This prints debugging information from
a running server. See \"man raddebug.

* Add \"require_message_authenticator\" configuration to home_server
configuration. This makes the server add Message-Authenticator
to all outgoing Access-Request packets.

* Added smsotp module, as contributed by Siemens.

* Enabled the administration socket in the default install.
See raddb/sites-available/control-socket, and \"man radmin\"

* Handle duplicate clients, such as with replicated or
load-balanced SQL servers and \"readclients = yes\"
Bug fixes

* Minor changes to allow building without VQP.

* Minor fixes from John Center

* Fixed raddebug example

* Don\'t crash when deleting attributes via unlang

* Be friendlier to very fast clients

* Updated the \"detail\" listener so that it only polls once,
and not many times in a row, leaking memory each time...

* Update comparison for Packet-Src-IP-Address (etc.) so that
the operators other than \'==\' work.

* Did autoconf magic to work around weird libtool bug

* Make rlm_perl keep tags for tagged attributes in more situations

* Update UID checking for radmin

* Added \"include_length\" field for TTLS. It\'s needed for RFC
compliance, but not (apparently) for interoperability.

* Clean up control sockets when they are closed, so that we don\'t
leak memory.

* Define SUN_LEN for systems that don\'t have it.

* Correct some boundary conditions in the conditional checker (\"if\")
in \"unlang\". Bug noted by Arran Cudbard-Bell.

* Work around minor building issues in gmake. This should only
have affected developers.

* Change how we manage unprivileged user/group, so that we do not
create control sockets owned by root.

* Fixed more minor issues found by Coverity.

* Allow raddb/certs/bootstrap to run when there is no \"make\"
command installed.

* In radiusd.conf, run_dir depends on the name of the program,
and isn\'t hard-coded to \"..../radiusd\"

* Check for EOF in more places in the \"detail\" file reader.

* Added Freeswitch dictionary.

* Chop ethernet frames in VMPS, rather than droppping packets.

* Fix EAP-TLS bug. Patch from Arnaud Ebalard

* Don\'t lose string for regex-compares in the \"users\" file.

* Expose more functions in rlm_sql to rlm_sqlippool, which
helps on systems where RTLD_GLOBAL is off.

* Fix typos in MySQL schemas for ippools.

* Remove macro that was causing build issues on some platforms.

* Fixed issues with dead home servers. Bug noted by Chris Moules.

* Fixed \"access after free\" with some dynamic clients.

- fix packaging bug, some directories missing execute permission
/etc/raddb/dictionary now readable by all.

Tue Feb 24 13:00:00 2009 John Dennis - 2.1.3-4
- fix type usage in unixodbc to match new type usage in unixodbc API

Thu Feb 19 13:00:00 2009 John Dennis - 2.1.3-3
- add pointer to Red Hat documentation in docdir

Sat Jan 24 13:00:00 2009 Caolán McNamara - 2.1.3-2
- rebuild for dependencies

Thu Dec 4 13:00:00 2008 John Dennis - 2.1.3-1
- upgrade to latest upstream release, upstream summary follows:
The focus of this release is stability.
Feature Improvements:

* Allow running with \"user=radiusd\" and binding to secure sockets.

* Start sending Status-Server \"are you alive\" messages earlier, which
helps with proxying multiple realms to a home server.

* Removed thread pool code from rlm_perl. It\'s not necessary.

* Added example Perl configuration to raddb/modules/perl

* Force OpenSSL to support certificates with SHA256. This seems to be
necessary for WiMAX certs.
Bug fixes:

* Fix Debian patch to allow it to build.

* Fix potential NULL dereference in debugging mode on certain
platforms for TTLS and PEAP inner tunnels.

* Fix uninitialized memory in handling of vendor definitions

* Fix parsing of quoted (but non-string) attributes in the \"users\" file.

* Initialize uknown NAS IP to 255.255.255.255, rather than 0.0.0.0

* use SUN_LEN in control socket, to avoid truncation on some platforms.

* Correct internal handling of \"debug condition\" to prevent it from
being over-written.

* Check return code of regcomp in \"unlang\", so that invalid regular
expressions are caught rather than mishandled.

* Make rlm_sql use . Addresses bug #610.

* Document list \"type = status\" better. Closes bug #580.

* Set \"default days\" for certificates, because OpenSSL won\'t do it.
This closes bug #615.

* Reference correct list in example raddb/modules/ldap. Closes #596.

* Increase default schema size for Acct-Session-Id to 64. Closes #540.

* Fix use of temporary files in dialup-admin. Closes #605 and
addresses CVE-2008-4474.

* Addressed a number of minor issues found by Coverity.

* Added DHCP option 150 to the dictionary. Closes #618.

Wed Dec 3 13:00:00 2008 John Dennis - 2.1.1-8
- add --with-system-libtool to configure as a workaround for
undefined reference to lt__PROGRAM__LTX_preloaded_symbols

Mon Dec 1 13:00:00 2008 John Dennis - 2.1.1-7
- add obsoletes tag for dialupadmin subpackages which were removed

Mon Dec 1 13:00:00 2008 John Dennis - 2.1.1-7
- add readline-devel BuildRequires

Sun Nov 30 13:00:00 2008 Ignacio Vazquez-Abrams - 2.1.1-4
- Rebuild for Python 2.6

Fri Nov 21 13:00:00 2008 John Dennis - 2.1.1-3
- make spec file buildable on RHEL5.2 by making perl-devel a fedora only dependency.
- remove diaupadmin packages, it\'s not well supported and there are problems with it.

Fri Sep 26 14:00:00 2008 John Dennis - 2.1.1-1
- Resolves: bug #464119 bootstrap code could not create initial certs in /etc/raddb/certs because
permissions were 750, radiusd running as euid radiusd could not write there, permissions now 770

Thu Sep 25 14:00:00 2008 John Dennis - 2.1.1-1
- upgrade to new upstream 2.1.1 release

Wed Jul 30 14:00:00 2008 John Dennis - 2.0.5-2
- Resolves: bug #453761: FreeRADIUS %post should not include chown -R
specify file attributes for /etc/raddb/ldap.attrmap
fix consistent use of tabs/spaces (rpmlint warning)

Mon Jun 9 14:00:00 2008 John Dennis - 2.0.5-1
- upgrade to latest upstream, see Changelog for details,
upstream now has more complete fix for bug #447545, local patch removed

Wed May 28 14:00:00 2008 John Dennis - 2.0.4-1
- upgrade to latest upstream, see Changelog for details
- resolves: bug #447545: freeradius missing /etc/raddb/sites-available/inner-tunnel

Fri May 16 14:00:00 2008 - 2.0.3-3
- # Temporary fix for bug #446864, turn off optimization

Fri Apr 18 14:00:00 2008 John Dennis - 2.0.3-2
- remove support for radrelay, it\'s different now
- turn off default inclusion of SQL config files in radiusd.conf since SQL
is an optional RPM install
- remove mssql config files

Thu Apr 17 14:00:00 2008 John Dennis - 2.0.3-1
- Upgrade to current upstream 2.0.3 release
- Many thanks to Enrico Scholz for his spec file suggestions incorporated here
- Resolve: bug #438665: Contains files owned by buildsystem
- Add dialupadmin-mysql, dialupadmin-postgresql, dialupadmin-ldap subpackages
to further partition external dependencies.
- Clean up some unnecessary requires dependencies
- Add versioned requires between subpackages

Tue Mar 18 13:00:00 2008 Tom \"spot\" Callaway - 2.0.2-2
- add Requires for versioned perl (libperl.so)

Thu Feb 28 13:00:00 2008 - 2.0.2-1
- upgrade to new 2.0 release
- split into subpackages for more fine grained installation

Tue Feb 19 13:00:00 2008 Fedora Release Engineering - 1.1.7-4.4.ipa
- Autorebuild for GCC 4.3

Thu Dec 6 13:00:00 2007 Release Engineering - 1.1.7-3.4.ipa
- Rebuild for deps

Sat Nov 10 13:00:00 2007 - 1.1.7-3.3.ipa
- add support in rlm_ldap for reading clients from ldap
- fix TLS parameter controling if a cert which fails to validate
will be accepted (i.e. self-signed),
rlm_ldap config parameter=tls_require_cert
ldap LDAP_OPT_X_TLS_REQUIRE_CERT parameter was being passed to
ldap_set_option() when it should have been ldap_int_tls_config()

Sat Nov 3 13:00:00 2007 - 1.1.7-3.2.ipa
- add support in rlm_ldap for SASL/GSSAPI binds to the LDAP server

Mon Sep 17 14:00:00 2007 Thomas Woerner 1.1.7-3.1
- made init script fully lsb conform

Mon Sep 17 14:00:00 2007 Thomas Woerner 1.1.7-3
- fixed initscript problem (rhbz#292521)

Tue Aug 28 14:00:00 2007 Thomas Woerner 1.1.7-2
- fixed initscript for LSB (rhbz#243671, rhbz#243928)
- fixed license tag

Tue Aug 7 14:00:00 2007 Thomas Woerner 1.1.7-1
- new versin 1.1.7
- install snmp MIB files
- dropped LDAP_DEPRECATED flag, it is upstream
- marked config files for sub packages as config (rhbz#240400)
- moved db files to /var/lib/raddb (rhbz#199082)

Fri Jun 15 14:00:00 2007 Thomas Woerner 1.1.6-2
- radiusd expects /etc/raddb to not be world readable or writable
/etc/raddb now belongs to radiusd, post script sets permissions

Fri Jun 15 14:00:00 2007 Thomas Woerner 1.1.6-1
- new version 1.1.6

Fri Mar 9 13:00:00 2007 Thomas Woerner 1.1.5-1
- new version 1.1.5
- no /etc/raddb/otppasswd.sample anymore
- build is pie by default, dropped pie patch
- fixed build requirement for perl (perl-devel)

Fri Feb 23 13:00:00 2007 Karsten Hopp 1.1.3-3
- remove trailing dot from summary
- fix buildroot
- fix post/postun/preun requirements
- use rpm macros

Fri Dec 8 13:00:00 2006 Thomas Woerner 1.1.3-2.1
- rebuild for new postgresql library version

Thu Nov 30 13:00:00 2006 Thomas Woerner 1.1.3-2
- fixed ldap code to not use internals, added LDAP_DEPRECATED compile time flag
(#210912)

Tue Aug 15 14:00:00 2006 Thomas Woerner 1.1.3-1
- new version 1.1.3 with lots of upstream bug fixes, some security fixes
(#205654)

Tue Aug 15 14:00:00 2006 Thomas Woerner 1.1.2-2
- commented out include for sql.conf in radiusd.conf (#202561)

Wed Jul 12 14:00:00 2006 Jesse Keating - 1.1.2-1.1
- rebuild

Thu Jun 1 14:00:00 2006 Thomas Woerner 1.1.2-1
- new version 1.1.2

Wed May 31 14:00:00 2006 Thomas Woerner 1.1.1-1
- new version 1.1.1
- fixed incorrect rlm_sql globbing (#189095)
Thanks to Yanko Kaneti for the fix.
- fixed chown syntax in post script (#182777)
- dropped gcc34, libdir and realloc-return patch
- spec file cleanup with additional libtool build fixes

Fri Feb 10 13:00:00 2006 Jesse Keating - 1.0.5-1.2
- bump again for double-long bug on ppc(64)

Tue Feb 7 13:00:00 2006 Jesse Keating - 1.0.5-1.1
- rebuilt for new gcc4.1 snapshot and glibc changes

Tue Dec 13 13:00:00 2005 Thomas Woerner 1.0.5-1
- new version 1.0.5

Fri Dec 9 13:00:00 2005 Jesse Keating
- rebuilt

Sat Nov 12 13:00:00 2005 Tom Lane - 1.0.4-5
- Rebuild due to mysql update.

Wed Nov 9 13:00:00 2005 Tomas Mraz - 1.0.4-4
- rebuilt with new openssl
- fixed ignored return value of realloc

Fri Sep 30 14:00:00 2005 Tomas Mraz - 1.0.4-3
- use include instead of pam_stack in pam config

Wed Jul 20 14:00:00 2005 Thomas Woerner 1.0.4-2
- added missing build requires for libtool-ltdl-devel (#160877)
- modified file list to get a report for missing plugins

Tue Jun 28 14:00:00 2005 Thomas Woerner 1.0.4-1
- new version 1.0.4
- droppend radrelay patch (fixed upstream)

Thu Apr 14 14:00:00 2005 Warren Togami 1.0.2-2
- rebuild against new postgresql-libs

Mon Apr 4 14:00:00 2005 Thomas Woerner 1.0.2-1
- new version 1.0.2

Fri Nov 19 13:00:00 2004 Thomas Woerner 1.0.1-3
- rebuild for MySQL 4
- switched over to installed libtool

Fri Nov 5 13:00:00 2004 Thomas Woerner 1.0.1-2
- Fixed install problem of radeapclient (#138069)

Wed Oct 6 14:00:00 2004 Thomas Woerner 1.0.1-1
- new version 1.0.1
- applied radrelay CVS patch from Kevin Bonner

Wed Aug 25 14:00:00 2004 Warren Togami 1.0.0-3
- BuildRequires pam-devel and libtool
- Fix errant text in description
- Other minor cleanups

Wed Aug 25 14:00:00 2004 Thomas Woerner 1.0.0-2.1
- renamed /etc/pam.d/radius to /etc/pam.d/radiusd to match default
configuration (#130613)

Wed Aug 25 14:00:00 2004 Thomas Woerner 1.0.0-2
- fixed BuildRequires for openssl-devel (#130606)

Mon Aug 16 14:00:00 2004 Thomas Woerner 1.0.0-1
- 1.0.0 final

Mon Jul 5 14:00:00 2004 Thomas Woerner 1.0.0-0.pre3.2
- added buildrequires for zlib-devel (#127162)
- fixed libdir patch to prefer own libeap instead of installed one (#127168)
- fixed samba account maps in LDAP for samba v3 (#127173)

Thu Jul 1 14:00:00 2004 Thomas Woerner 1.0.0-0.pre3.1
- third \"pre\" release of version 1.0.0
- rlm_ldap is using SASLv2 (#126507)

Tue Jun 15 14:00:00 2004 Elliot Lee
- rebuilt

Thu Jun 3 14:00:00 2004 Thomas Woerner 0.9.3-4.1
- fixed BuildRequires for gdbm-devel

Tue Mar 30 14:00:00 2004 Harald Hoyer - 0.9.3-4
- gcc34 compilation fixes

Tue Mar 2 13:00:00 2004 Elliot Lee
- rebuilt

Tue Feb 24 13:00:00 2004 Thomas Woerner 0.9.3-3.2
- added sql scripts for rlm_sql to documentation (#116435)

Fri Feb 13 13:00:00 2004 Elliot Lee
- rebuilt

Thu Feb 5 13:00:00 2004 Thomas Woerner 0.9.3-2.1
- using -fPIC instead of -fpic for s390 ans s390x

Thu Feb 5 13:00:00 2004 Thomas Woerner 0.9.3-2
- radiusd is pie, now

Tue Nov 25 13:00:00 2003 Thomas Woerner 0.9.3-1
- new version 0.9.3 (bugfix release)

Fri Nov 7 13:00:00 2003 Thomas Woerner 0.9.2-1
- new version 0.9.2

Mon Sep 29 14:00:00 2003 Thomas Woerner 0.9.1-1
- new version 0.9.1

Mon Sep 22 14:00:00 2003 Nalin Dahyabhai 0.9.0-2.2
- modify default PAM configuration to remove the directory part of the module
name, so that 32- and 64-bit libpam (called from 32- or 64-bit radiusd) on
multilib systems will always load the right module for the architecture
- modify default PAM configuration to use pam_stack

Mon Sep 1 14:00:00 2003 Thomas Woerner 0.9.0-2.1
- com_err.h moved to /usr/include/et

Tue Jul 22 14:00:00 2003 Thomas Woerner 0.9.0-1
- 0.9.0 final

Wed Jul 16 14:00:00 2003 Thomas Woerner 0.9.0-0.9.0
- new version 0.9.0 pre3

Thu May 22 14:00:00 2003 Thomas Woerner 0.8.1-6
- included directory /var/log/radius/radacct for logrotate

Wed May 21 14:00:00 2003 Thomas Woerner 0.8.1-5
- moved log and run dir to files section, cleaned up post

Wed May 21 14:00:00 2003 Thomas Woerner 0.8.1-4
- added missing run dir in post

Tue May 20 14:00:00 2003 Thomas Woerner 0.8.1-3
- fixed module load patch

Fri May 16 14:00:00 2003 Thomas Woerner
- removed la files, removed devel package
- split into 4 packages: freeradius, freeradius-mysql, freeradius-postgresql,
freeradius-unixODBC
- fixed requires and buildrequires
- create logging dir in post if it does not exist
- fixed module load without la files

Thu Apr 17 14:00:00 2003 Thomas Woerner
- Initial build.


  
ICM