Overview Repositories Revisions Requests Users Attributes Meta

Revisions of freeradius-server

Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 705679 from Adam Majer's avatar Adam Majer (adamm) (revision 77) 
Only reference updates. No changes.
Stephan Kulow's avatar Stephan Kulow (coolo) accepted request 679792 from Adam Majer's avatar Adam Majer (adamm) (revision 75) 
- reformat changelog mostly by wrapping lines
- add missing bug numbers for security fixes

- update to 3.0.18
* cleanup_delay can now be 30 seconds. This helps with proxies that have packet loss.
* Do-Not-Respond policies can now be set in the "post-auth" section.
* Encode / Decode ADSL Forum DHCP options.
* Fix module ordering issues. e.g. when "sqlippool" needs "sql".
  See the "instantiate" section of radiusd.conf.
* Add Big Switch dictionary. Fixes #2252.
* Add sql_session_start policy (raddb/policy.d/accounting)
  This minimizes race conditions when using Simultaneous-Use (#2257).
* For rlm_perl, all variables are now tainted by default.
  See raddb/mods-available/perl, and the "perl_flags" configuration item.
  This change should only affect people who are using variables in
  insecure ways.
* Allow "sqlcounter" module to be listed in "post-auth".
* Add support for IPv6 attributes in SQL. Fixes #2280
* The server is better at handling fail-over for outbound RadSec and
  TCP connections. Fixes #2284.
* The server is now more aggressive about retrying failed outbound
  RadSec and TCP connections. Fixes #2284.
* Add TLS-Session-Version and TLS-Session-Cipher-Suite to the "session_state" list.
* Add expansion for Radsec connections. "%{listen:TLS-...}" for
  TLS-Client-Cert-* and TLS-Cert-* attributes.
* Add notes on running "ldapsearch" using the parameters from the LDAP module.
* "ipaddr" attributes can now be cast to "integer" type attributes
  in an "update" section.
* Move main thread queue to using atomic queues. This should help
  with contention in high load scenarios.
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 527291 from Adam Majer's avatar Adam Majer (adamm) (revision 71) 
- Fix permissions of radiusd.service (bnc#1053654)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 480000 from Adam Majer's avatar Adam Majer (adamm) (revision 67) 
this is needed so package is identical to SP3 version
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 455207 from Adam Majer's avatar Adam Majer (adamm) (revision 64) 
- Merge changes from SLE to openSUSE (FATE#322416):
  * freeradius-server-radclient-init-error-buffer.patch - make sure
    we initialize error buffer. bsc#911886: radclient error free()
    invalid pointer
  * freeradius-server-opensslversion.patch: remove OpenSSL version
    check and assume we know what we are doing. (bnc#1013311)
  * merge .changes file, mostly.
- do not attempt to detect "vulnerable" OpenSSL versions. SUSE
  security fixes do not necessarily bump version numbers as
  does upstream OpenSSL (bnc#1021375)
- do not generate certificates in %post. End-user needs to do this
  manually.
- keep FreeTDS disabled on SLE12 - we never shipped it enabled
- require OpenSSL 1.0+
- use pkgconfig(systemd) instead of plain systemd as BuildRequires
- don't list manual pages as %doc

- Add upstream keyring
- 2 new modules: rlm_sql_freetds and rlm_eap_fast
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 321226 from Jochen Keil's avatar Jochen Keil (jkeil) (revision 58) 
- Fix boo#912714: freeradius can't use ntlm_auth
  * Create winbind group
  * Add radiusd to winbind group
Displaying revisions 21 - 40 of 97
openSUSE Build Service is sponsored by
Places