Hi all,
I've got a pbm using mysql with ser 0.9.3 when I set a password different
from the default passwd heslo for ser user.
When using the default password configuration and the ser_mysql.sh script,
I've got no pbm. I can use the localhost database and even a database
started on another proxy with a different password than heslo (heslo2),
using the settings below in ser.cfg:
fifo_db_url="mysql://ser2:heslo2@172.30.30.104/ser2"
modparam("auth_db|uri_db|usrloc", "db_url",
"mysql://ser2:heslo2@172.30.30.104/ser2")
But when I modify the ser_mysql.sh to use a different password than heslo
(heslo 2 for example, see below), ser does not start using:
fifo_db_url="mysql://ser:heslo2@localhost/ser"
modparam("auth_db|uri_db|usrloc", "db_url",
"mysql://ser:heslo2@localhost/ser").
Moreover I'm now unable to log to the database loaded on the other proxy
(172.30.30.104) using the first configuration above.
When using mysql -h localhost -u ser -p and using the new password, I can
connect to the database.
The syslog shows this when trying with a different password:
Jul 4 18:56:34 sip /sbin/ser[7155]: new_connection(): Access denied for
user: 'ser@localhost' (Using password: YES)
Jul 4 18:56:34 sip /sbin/ser[7155]: db_init(): Could not create a
connection
Jul 4 18:56:34 sip /sbin/ser[7155]: ERROR: acc_db_init: unable to connect
to the database
Jul 4 18:56:34 sip /sbin/ser[7155]: init_mod_child(): Error while
initializing module acc
Jul 4 18:56:34 sip /sbin/ser[7155]: init_child failed
Jul 4 18:56:34 sip /sbin/ser[7155]: WARNING: destroy_fifo: cannot delete
fifo (/tmp/ser_fifo): No such file or directory
Does somebody can help me; I'm trying to get this working without success.
Thanks a lot,
Rodrigue
hello,
I posted mails about nathelper/rtpproxy/MOH any
developpers could explain us how does it work ?
Regards
Harry
___________________________________________________________________________
Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger
Téléchargez cette version sur http://fr.messenger.yahoo.com
Seems there is a bug in the openser_mysql.sh script. Running it screws up that root password in mysql and changes it to "openserrw". It also does not create a user "openserrw".
Deepak
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
hello
can anyone check what is wrong in my installation.
gcc -g -O9 -funroll-loops -Wcast-align -Wall
-minline-all-stringops -malign-double -falign-loops
-mcpu=athlon -DNAME='"ser"' -DVERSION='"0.9.2"'
-DARCH='"i386"' -DOS='"linux"' -DCOMPILER='"gcc 3.2"'
-D__CPU_i386 -D__OS_linux
-DCFG_DIR='"/usr/local/etc/ser/"' -DPKG_MALLOC
-DSHM_MEM -DSHM_MMAP -DDNS_IP_HACK -DUSE_IPV6
-DUSE_MCAST -DUSE_TCP -DDISABLE_NAGLE -DDBG_QM_MALLOC
-DF_MALLOC -DFAST_LOCK -DADAPTIVE_WAIT
-DADAPTIVE_WAIT_LOOPS=1024 -DHAVE_GETHOSTBYNAME2
-DHAVE_UNION_SEMUN -DHAVE_SCHED_YIELD
-DHAVE_MSG_NOSIGNAL -DHAVE_MSGHDR_MSG_CONTROL
-DHAVE_ALLOCA_H -c usr_avp.c -o usr_avp.o
In file included from usr_avp.c:45:
mem/shm_mem.h: In function `_shm_malloc':
mem/shm_mem.h:135: too many arguments to function
`fm_malloc'
mem/shm_mem.h: In function `_shm_realloc':
mem/shm_mem.h:146: too many arguments to function
`fm_realloc'
usr_avp.c: In function `destroy_avp':
usr_avp.c:313: too many arguments to function
`fm_free'
usr_avp.c: In function `destroy_avp_list_unsafe':
usr_avp.c:328: too many arguments to function
`fm_free'
usr_avp.c: In function `destroy_avp_list':
usr_avp.c:343: too many arguments to function
`fm_free'
usr_avp.c: In function `add_avp_galias':
usr_avp.c:420: too many arguments to function
`fm_malloc'
usr_avp.c:426: too many arguments to function
`fm_malloc'
usr_avp.c:437: too many arguments to function
`fm_malloc'
usr_avp.c:459: too many arguments to function
`fm_free'
usr_avp.c:461: too many arguments to function
`fm_free'
make: *** [usr_avp.o] Error 1
____________________________________________________
Yahoo! Sports
Rekindle the Rivalries. Sign up for Fantasy Football
http://football.fantasysports.yahoo.com
Hello!
If I have 2 PSTN gateways (each one with a single E1 trunk), how can I
configure SER to relay the PSTN calls to the 2nd PSTN gateway in case if
the first fails (or is not enaugh the first E1 trunk for PSTN calls)
?????
Please help me!
Szabolcs
_____________________________
Szabolcs Szasz
CCNA Network Engineer
Digi Communication SRL
H2/3 Petofi Sandor St.
Sovata,
Mures, Romania
Tel/ Fax: +40 265 577888
+40 265 577785
+40 365 506000
sszasz(a)digicomm.ro
www.digicomm.ro
_____________________________
Hello,
cvs snapshots for openser 0.9.x, CVS head and rtpproxy can be downloaded
from:
http://www.openser.org/downloads/snapshots/
They include the CVS/* files so you can use 'cvs update' afterwards.
Daniel
Hi all,
I am considering extending CPL to include context and presence switches.
Now if I modify the cpl dtd file, I will obviously have to modify the
cpl-c module of SER to understand it. Can anyone give me guidelines as
to what files in the cpl-c module directory I should concentrate
on?...cpl.c??
Many Thanks,
Aisling.
-------------------Legal Disclaimer---------------------------------------
The above electronic mail transmission is confidential and intended only for the person to whom it is addressed. Its contents may be protected by legal and/or professional privilege. Should it be received by you in error please contact the sender at the above quoted email address. Any unauthorised form of reproduction of this message is strictly prohibited. The Institute does not guarantee the security of any information electronically transmitted and is not liable if the information contained in this communication is not a proper and complete record of the message as transmitted by the sender nor for any delay in its receipt.
Hello,
the roadmap to the next release is now posted online:
http://openser.org/roadmap.php
Time lines are just estimations and could be subject to change, other
features may be added to the next release. If you have in mind other
features, send a reply and describe what would be good to have in the
next release.
Comments are welcome!
Daniel
Dear all,
I'm new in SER and i have a serius problem about implementing the authentication system from LDAP;
SER<->freeRADIUS<->LDAP(user/pass(encrypted));
We have installed SER + Freeradius + LDAP system, the SER parts of configuration works fine.
if any SIP client coming into the SER the auth_radius modul forward the request correctly to the freeradius:
the problem is the following:
rad_recv: Access-Request packet from host 127.0.0.1:50272, id=36, length=197
User-Name = "test(a)test.hu"
Digest-Attributes = 0x0a076779656269
Digest-Attributes = 0x010d667265656d61696c2e6875
Digest-Attributes = 0x022a34326337353933653330366534626363613836343837343332646635383363366139636364383038
Digest-Attributes = 0x04117369703a667265656d61696c2e6875
Digest-Attributes = 0x030a5245474953544552
Digest-Response = "204aea65f72efb70b809ed425bec099c"
Service-Type = Sip-Session
Sip-Uri-User = "test"
NAS-IP-Address = 127.0.0.1
NAS-Port = 5060
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 4
modcall[authorize]: module "preprocess" returns ok for request 4
modcall[authorize]: module "chap" returns noop for request 4
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 4
rlm_digest: Converting Digest-Attributes to something sane...
Digest-User-Name = "test"
Digest-Realm = "test.hu"
Digest-Nonce = "42c7593e306e4bcca86487432df583c6a9ccd808"
Digest-URI = "sip:test.hu"
Digest-Method = "REGISTER"
rlm_digest: Adding Auth-Type = DIGEST
modcall[authorize]: module "digest" returns ok for request 4
rlm_realm: Looking up realm "test.hu" for User-Name = test(a)test.hu
rlm_realm: No such realm "test.hu"
modcall[authorize]: module "suffix" returns noop for request 4
users: Matched entry DEFAULT at line 160
modcall[authorize]: module "files" returns ok for request 4
modcall[authorize]: module "mschap" returns noop for request 4
modcall: group authorize returns ok for request 4
rad_check_password: Found Auth-Type LDAP
auth: type "LDAP"
Processing the authenticate section of radiusd.conf
modcall: entering group Auth-Type for request 4
rlm_ldap: - authenticate
rlm_ldap: Attribute "User-Password" is required for authentication.
modcall[authenticate]: module "ldap" returns invalid for request 4
modcall: group Auth-Type returns invalid for request 4
auth: Failed to validate the user.
Login incorrect: [test(a)test.hu/<no User-Password attribute>] (from client localhost port 5060)
Delaying request 4 for 1 seconds
so the ldap modul expect the "User-Password" attribute from radius client, but because of DIGEST authentication only get "DIGEST-ATTRIBUTES" from the SIP router,
Anyway, how to possible to authenticate the users with DIGEST authentication, if the RADIUS can not see cleartext passwords in LDAP ?.
I'm not expert in password math and calculations, and also read the sterman draft to explain this to me.
So i suppose the following method:
Radius get the RADIUS request.-->Convert the DIGEST-ATTRIBUTES to readable format.-->to calculate the DIGEST AUTH. values the RADIUS have to do LDAP lookup for the PASSWORD-> Calculate the DIGEST AUTH. value and comapare it with the recieved one, if match the user authenticated.
It's right ?
The radius authentication system works fine with DIGEST authentication, if I store the user/pass on local file system (in users file) and also works authenticate from LDAP without DIGEST auth (try with radtest).
Has anybody experience with this problem, DIGEST auth with LDAP ?
THX
Krisztián
