/CHANGELOG |
---|
2,6 → 2,8 |
************ ALCASAR CHANGELOG *********** |
------------------------2.9 ------------------------ |
WARNING |
- Configuration radius with PAP module (remove a warning) |
NEWS |
- Mageia4 migration |
- Add the SMS auto-registration system |
9,6 → 11,8 |
- Add whitelist filtering (domains and related IP addreses) |
- Add the IP addresses of the Toulouse blacklist in the firewall targets |
- add surfmap plugin (nfsen) |
- Store user password in SHA256 instead of MD5 (Thanks to Olivier HOUSSENBAY) |
ACC |
- simplify the user registration menu |
- import in the blacklist a file containing a list of ip addresses (ie : CERT) |
/conf/radius/alcasar-radius |
---|
69,7 → 69,7 |
# 'raddb/huntgroups' files. |
# |
# It also adds the %{Client-IP-Address} attribute to the request. |
preprocess |
# preprocess |
# |
# If you want to have a log of authentication requests, |
187,7 → 187,7 |
# This module should be listed last, so that the other modules |
# get a chance to set Auth-Type for themselves. |
# |
# pap |
pap |
# |
# If "status_server = yes", then Status-Server messages are passed |
198,11 → 198,11 |
# Autz-Type Status-Server { |
# |
# } |
update coa { |
User-Name = "%{User-Name}" |
Acct-Session-Id = "%{Acct-Session-Id}" |
NAS-IP-Address = "%{NAS-IP-Address}" |
} |
# update coa { |
# User-Name = "%{User-Name}" |
# Acct-Session-Id = "%{Acct-Session-Id}" |
# NAS-IP-Address = "%{NAS-IP-Address}" |
# } |
} |
237,9 → 237,9 |
# # PAP authentication, when a back-end database listed |
# # in the 'authorize' section supplies a password. The |
# # password can be clear-text, or encrypted. |
# Auth-Type PAP { |
# pap |
# } |
Auth-Type PAP { |
pap |
} |
# |
# # |
# # Most people want CHAP authentication |
293,7 → 293,7 |
# Pre-accounting. Decide which accounting type to use. |
# |
preacct { |
preprocess |
# preprocess |
# |
# Ensure that we have a semi-unique identifier for every |
/web/acc/manager/lib/crypt/crypt.php |
---|
4,7 → 4,13 |
$numargs=func_num_args(); |
$passwd=func_get_arg(0); |
# calcul d'un salt pour forcer le chiffrement en MD5 au lieu de blowfish par defaut dans php version mdva > 2007.1 |
$salt='$1$passwd$'; |
# hash md5 > empreinte du mot de passe sur 22 caracteres |
#$salt='$1$passwd$'; |
# hash sha-256 > empreinte du mot de passe sur 43 caracteres |
$salt='$5$passwd$'; |
# hash sha-512 > empreinte du mot de passe sur 86 caracteres |
#$salt='$6$passwd$'; |
if ($numargs == 2){ |
$salt=func_get_arg(1); |
return crypt($passwd,$salt); |