[求助]使用freeradius搭建动态口令认证系统-WEB安全-看雪-安全社区|安全招聘|kanxue.com

[求助]使用freeradius搭建动态口令认证系统

发表于: 2015-6-19 00:46 1551

[求助]使用freeradius搭建动态口令认证系统

疯狂langzi

2015-6-19 00:46

1551

各位大牛，我想用freeradius搭建一个动态口林认证的系统。使用freeradius 3.0.8，动态口令服务器是otpd 3.1.0。按照使用freeradius otp模块配好了环境可是运行的时候freeradius和otpd服务器之间总是阻塞状态。显示的状况如下：
freeradius：
(0) Received Access-Request Id 100 from 127.0.0.1:55838 to 127.0.0.1:1812 length 73
(0)   User-Name = 'bob'
(0)   User-Password = '160888'
(0)   NAS-IP-Address = 127.0.1.1
(0)   NAS-Port = 100
(0)   Message-Authenticator = 0x0adedabc9df09cd385326435b3e1fc36
(0) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
(0)   authorize {
(0)     policy filter_username {
(0)       if (!&User-Name) {
(0)       if (!&User-Name)  -> FALSE
(0)       if (&User-Name =~ / /) {
(0)       if (&User-Name =~ / /)  -> FALSE
(0)       if (&User-Name =~ /@.*@/ ) {
(0)       if (&User-Name =~ /@.*@/ )  -> FALSE
(0)       if (&User-Name =~ /\.\./ ) {
(0)       if (&User-Name =~ /\.\./ )  -> FALSE
(0)       if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+)\.(.+)$/))  {
(0)       if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+)\.(.+)$/))   -> FALSE
(0)       if (&User-Name =~ /\.$/)  {
(0)       if (&User-Name =~ /\.$/)   -> FALSE
(0)       if (&User-Name =~ /@\./)  {
(0)       if (&User-Name =~ /@\./)   -> FALSE
(0)     } # policy filter_username = notfound
(0)     [preprocess] = ok
(0)     [chap] = noop
(0)     [mschap] = noop
(0)     [digest] = noop
(0) suffix: Checking for suffix after "@"
(0) suffix: No '@' in User-Name = "bob", looking up realm NULL
(0) suffix: No such realm "NULL"
(0)     [suffix] = noop
(0) eap: No EAP-Message, not doing EAP
(0)     [eap] = noop
(0) files: users: Matched entry bob at line 87
(0) files: EXPAND Hello, %{User-Name}
(0) files:    --> Hello, bob
(0)     [files] = ok
(0)     [expiration] = noop
(0)     [logintime] = noop
rlm_otp: otp_pwe_present: password attributes User-Password, User-Password
(0)     [otp] = ok
(0) pap: WARNING: Auth-Type already set.  Not setting to PAP
(0)     [pap] = noop
(0)   } # authorize = ok
(0) Found Auth-Type = OTP
(0) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(0)   Auth-Type OTP {
rlm_otp: otp_pwe_present: password attributes User-Password, User-Password

otpd服务器状态如下：
otpd: accept_thread: plugin accept fd=5
otpd: work_thread: tid=3061951344, fd=5

这两个进程就都不继续了
请问各位大牛这是为什么    感激不禁

[培训]科锐逆向工程师培训第53期2025年7月8日开班！

收藏・1

免费・0

支持