> Joe Hartley wrote:
> >
> > "John Campbell" <john@hixnet.co.za> wrote:
> > > I can't believe the responses I've had so far.
> > > Do many ISP's actually edit the Radius users file manually ?
I do but just for DEFAULT entries and a few user specific entries.
> > We do, but we only have special entries for those customers with
> > special requirements - dedicated ISDN lines, static IP dialups or
> > shell-only customers. Everyone else gets handled by the DEFAULT
> > entry, which validates accordfing to the /etc/passwd file on our Sun,
> > and gets the IP address as handled by the PM.
> >
> > We have to edit this 2-3 times per month, tops.
>
> keeping the passwords in the /etc/password file can be an invitation for
> somebody to use a crack program on your other users in the password
> file!
Not if you are using shadowed passwords - everyone should be these days.
> can the DEFAULT radius password check can be set to check using shadow
> password's databases? I.e, can radius authentication co-exist with
> shadow
Yup - it uses the system's password checking functions so it will work just
fine with shadow passwords.
-- - Steve - Systems Manager - Community Internet Access, Inc. - Gallup and Grants, New Mexico - To unsubscribe, email 'majordomo@livingston.com' with 'unsubscribe portmaster-users' in the body of the message.