Home > mailing lists

Re: BUG #5687: RADIUS Authentication issues - Mailing list pgsql-bugs

From	Alan T DeKok
Subject	Re: BUG #5687: RADIUS Authentication issues
Date	October 7, 2010 19:39:04
Msg-id	4CAE1F90.5030804@freeradius.org Whole thread Raw
In response to	Re: BUG #5687: RADIUS Authentication issues (Magnus Hagander <magnus@hagander.net>)
Responses	Re: BUG #5687: RADIUS Authentication issues (Dimitri Fontaine <dimitri@2ndQuadrant.fr>)
List	pgsql-bugs

Tree view

Magnus Hagander wrote:
> If you can test the complete patch in your environment (particularly
> if you already have a "bad packet injector" that you know creates the
> issue on 9.0), that would be great though.

  If you use FreeRADIUS, use "radclient" to send the following text:

User-Name = "bob"
User-Password = "hello"
Raw-Attribute = 0x0501

  The last bit is a malformed RADIUS attribute.

>>  OK.  My only interest there was to ensure that a DoS attack wouldn't
>> result in the log being flooded with "invalid packet" messages.
>
> Uh, how exactly does your patch prevent that?

  Hmm.... not so much.

  Alan DeKok.

pgsql-bugs by date:

From: Magnus Hagander
Date: 07 October 2010, 19:04:10
Subject: Re: BUG #5687: RADIUS Authentication issues

From: Dimitri Fontaine
Date: 07 October 2010, 20:04:48
Subject: Re: BUG #5687: RADIUS Authentication issues

Re: BUG #5687: RADIUS Authentication issues - Mailing list pgsql-bugs

Previous

Next