Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 

   


   


   















      :: Inet-Admins
Inet-Admins mailing list archive (inet-admins@info.east.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[inet-admins] [patch] TACACS+ (fwd)



       ? :)


--------------------------------------
Basil (Vasily)  Dolmatov  CCNA,CCDA
East Connection ISP, Moscow, Russia. (http://www.east.ru)

---------- Forwarded message ----------
Date: Wed, 17 Mar 1999 15:32:29 +0500 (GMT)
From: CyberPsychotic <fygrave@tigerteam.net>
To: Gordon Smith <Gordon@hortauto.co.nz>
Cc: cisco@spot.colorado.edu, linux-admin@vger.rutgers.edu
Subject: [patch] TACACS+

 okay. I just tested tacacs again.  seems there were some problems
actually.Don't remember what linux it compiled fine to me first.

Here's the patch which should make tacacs compile on Linux (tested R.H.
5.0). (apply it from the source dir).

(basically it didn't like 2 things: redefinition of sys_errlist, which is
defined in stdio.h, and utmp.h has it's own login function, that's why I had
to change the name here, plus glibc would want libcrypt linked).


PS: I am CC'ing this to both cisco and linux-admin lists, in case if someone
else have faced the similar problem, or cisco guys would want to fix it (if
haven't yet). ( the tacsplus.F4.0.2.alpha.tar.Z source used).


--- Makefile.orig	Sat Jan 10 05:14:11 1998
+++ Makefile	Wed Mar 17 15:16:49 1999
@@ -17,7 +17,7 @@
 # LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
 # FOR A PARTICULAR PURPOSE. 
 
-# CC = gcc
+CC = gcc
 
 # For AIX
 # See /usr/lpp/bos/bsdport on your system for details of how to define bsdcc
@@ -43,7 +43,8 @@
 # OSLIBS=-ldescrypt
 
 # For LINUX
-# OS=-DLINUX
+OS=-DLINUX -DHAVE_NO_SYS_ERRLIST
+OSLIBS= -lcrypt
 
 # Athough invoked as root, most of the time you don't want tac_plus to
 # be running as root. If USERID and GROUPID are set, tac_plus will
@@ -51,9 +52,9 @@
 # configuration file and obtaining a privileged socket. If you always
 # want tac_plus to run as root, then just comment out the FLAGS line.
 
-# USERID  = 1500
-# GROUPID = 25
-# FLAGS   = -DTAC_PLUS_USERID=$(USERID) -DTAC_PLUS_GROUPID=$(GROUPID)
+USERID  = 1500
+GROUPID = 25
+FLAGS   = -DTAC_PLUS_USERID=$(USERID) -DTAC_PLUS_GROUPID=$(GROUPID)
 
 # Definitions for SKEY functionality
 # DEFINES = -DSKEY
--- default_fn.c.orig	Wed Mar 17 15:10:09 1999
+++ default_fn.c	Wed Mar 17 15:14:56 1999
@@ -50,8 +50,7 @@
 #endif /* MSCHAP */
 static void arap_verify();
 static void pap_verify();
-static void login();
-
+static void tac_login(struct authen_data *data ,struct private_data *p);
 /*
  * Default tacacs login authentication function. Wants a username
  * and a password, and tries to verify them.
@@ -160,7 +159,7 @@
 	    break;
 
 	case TAC_PLUS_AUTHEN_TYPE_ASCII:
-	    login(data, p);
+	    tac_login(data, p);
 	    switch (data->status) {
 	    case TAC_PLUS_AUTHEN_STATUS_GETPASS:
 	    case TAC_PLUS_AUTHEN_STATUS_GETUSER:
@@ -211,7 +210,7 @@
  */
 
 static void
-login(data, p)
+tac_login(data, p)
 struct authen_data *data;
 struct private_data *p;
 {
--- tac_plus.h.orig	Wed Mar 17 15:08:19 1999
+++ tac_plus.h	Wed Mar 17 15:08:50 1999
@@ -683,12 +683,13 @@
 
 /* pwlib.c */
 extern void set_expiration_status();
-
+#ifndef HAVE_NO_SYS_ERRLIST
 /* miscellaneous */
 #ifdef CONST_SYSERRLIST
 extern const char *const sys_errlist[];
 #else
 extern char *sys_errlist[];
+#endif
 #endif
 extern int errno;
 extern int sendauth_fn();

=============================================================================
"inet-admins" Internet access mailing list. Maintained by East Connection ISP.
Mail "unsubscribe inet-admins" to Majordomo@info.east.ru if you want to quit.
Archive is accessible on http://info.east.ru/rus/inetadm.html



 




Copyright © Lexa Software, 1996-2009.