On Mon, Oct 17, 2005 at 02:23:18PM +0200, Arve Seljebu wrote: > On 10/17/2005, "Paul TBBle Hampson" <[EMAIL PROTECTED]> wrote:
>>On Mon, Oct 17, 2005 at 01:06:39AM +0200, Arve Seljebu wrote: >>> Package: freeradius-dialupadmin >>> Version: 1.0.2-4 >>> Severity: normal >>> When trying to test against RADIUS, apache returns the following error >>> message: >>> radclient: dict_init: Couldn't open dictionary >>> "/etc/freeradius/dictionary": Permission denied >>> Changing permission for dictionary fixes the problem. >>This is a local admin decision, by default /etc/freeradius and its >>contents should only be readable by root:freerad. > I don't know where radclient gets his dictionary configuration from, but > changing this to /usr/share/freeradius/dictionary could also solve the > problem. Note: Last time I updated freeradius, this file was overwritten. Hmm. Yeah, it too needs access to /etc/freeradius/dictionary... Hmm. I'll have to give this some thought. In theory radclient could be a seperate pacakge, and the dictionaries would then go into a shared package. So far there's been no requests for that, leading me to believe that the only people wanting radclient are wanting it for local testing use, and therefore don't want to be putting secrets and dictionaries and whatnot available to regular users. Or something like that. Actually, the best thing for radclient is prolly to add the relevant user to the FreeRADIUS group... Or maybe not. -- Paul "TBBle" Hampson, [EMAIL PROTECTED] 8th year CompSci/Asian Studies student, ANU Shorter .sig for a more eco-friendly paperless office.
pgpg7rZCqErD0.pgp
Description: PGP signature
