diff options
| author | Arran Cudbard-Bell <a.cudbardb@freeradius.org> | 2012-10-24 08:18:01 +0100 |
|---|---|---|
| committer | Arran Cudbard-Bell <a.cudbardb@freeradius.org> | 2012-10-24 08:18:01 +0100 |
| commit | c2c2b9c4b0571f4e6050de78ae8fd813d1be7431 (patch) | |
| tree | 12d9d04d58daec7558ab0ae63c7c52ac7d14642f /README | |
| download | libpam-radius-auth-c2c2b9c4b0571f4e6050de78ae8fd813d1be7431.tar.gz libpam-radius-auth-c2c2b9c4b0571f4e6050de78ae8fd813d1be7431.zip | |
Commit of version 1.3.17
Diffstat (limited to 'README')
| -rw-r--r-- | README | 52 |
1 files changed, 52 insertions, 0 deletions
@@ -0,0 +1,52 @@ + pam_radius_auth.c + =================== + + This is the PAM to RADIUS authentication module. It allows any +Linux or Solaris machine to become a RADIUS client for authentication +and password change requests. You will need to supply your own RADIUS +server to perform the actual authentication. + + The latest version has a simple merger of the original pam_radius +session accounting code which will work *only* on Linux. + + See INSTALL for instructions on building and installing this module. +I have successfully used it for RADIUS authentication on RedHat 4.2, +RedHat 5.x, RedHat 6.x, and Solaris 2.6. + + A number of options are supported by this module. See USAGE for +more details. + + Care should be taken when configuring RADIUS authentication. Your +RADIUS server should have a minimal set of machines in it's 'clients' +file. The server should NOT be visible to the world at large, but +should be contained behind a firewall. If your RADIUS server is +visible from the Internet, a number of attacks become possible. + + Any additional questions can be directed to: + + Alan DeKok (aland@freeradius.org) + + For the latest version and updates, see the main web or ftp site: + +http://www.freeradius.org/ +ftp://ftp.freeradius.org/pub/radius/ + + + The pam_radius_auth module based on an old version of Cristian +Gafton's pam_radius.c, and on an Apache module I wrote a while back. +(mod_auth_radius.c, also on ftp://ftp.freeradius.org/pub/radius/). + + The source contains a full suite of RADIUS functions, instead of +using libpwdb. It makes sense, because we want it to compile +out of the box on Linux and Solaris 2.6. I also wasn't able to find +much documentation for RADIUS authentication support in libpwdb, so I +rolled my own. + + There are minimal restrictions on using the code, as set out in the +disclaimer and copyright notice in pam_radius_auth.c. + + Building it is straightforward: use GNU make, and type 'make'. If +you've got some other weird make, you'll have to edit the Makefile to +remove the GNU make directives 'ifeq', 'else', etc. + + Alan DeKok <aland@freeradius.org> |