Commit Graph

9 Commits

Author SHA1 Message Date
Andreas Klemm
828b215af2 From Sergey:
"Using tacacs I found that ckfinger() function from maxsess.c module
 returns wrong count of current sessions for users with "maxsess"
 parameter established in tac_plus.conf. It happens if Cisco access
 server works with IOS v 12.x.
 On the other hand ckfinger() works well with IOS v 11.x
 Here are patches for both maxsess.c and port's Makefile to fix
 this problem (but it is just workaround, ckfinger() should be
 fully rewritten)."
From me:
 changed variable name by prepending string "TAC_", so that tacacs+
 ports variables follow an unique scheme.
Please note: this doesn't compile with the new TAC_IOS_VERSION variable
if you have CFLAGS redefined in /etc/make.conf as:
CFLAGS=-pipe -O (or whatever)
You have to use
CFLAGS+=-pipe -O (or whatever)
Mailed to -developers. Am really not sure, what's the culprit here.
Fact is, that a part of CFLAGS get lost when compiling the port,
if you redefine CFLAGS in /etc/make.conf without the "+" sign ...
I personally removed my CFLAGS define in /etc/make.conf as it
defaults to -pipe -O, which is fine for me.

Submitted by:	Sergey E. Levov (serg@informika.ru)
2001-01-24 08:06:55 +00:00
Andreas Klemm
7eb4e513f0 From Sergey:
"The tac_plus user guide says that when passwd(5) file is used for user
 authentication, the expiry date checks against shell field of password file.
 Maybe it is OK for custom passwd files, but not for system password file.

 Here is a little patch below which allow the tacacs daemon check
 the expiration dates against 'expire' field of FreeBSD's master.passwd file.
 It is very useful for me, and may be useful for other FreeBSD&tacacs users."

Submitted by:	Sergey Levov <serg@informika.ru>
2000-12-01 20:42:49 +00:00
Andreas Klemm
79c1c154e8 patch submission, cisco got a copy.
Submitted by:	Taras Heychenko <tasic@lucky.net>
2000-08-02 16:37:22 +00:00
Thomas Gellekum
546041ba31 As threatened on freebsd-ports: all startup scripts know about the two
options `start' and `stop' now (unless I have forgotten any). This allows
us to call the scripts from /etc/rc.shutdown with the correct option.

The (42 or so) ports that already DTRT before are unchanged.
2000-07-05 12:37:06 +00:00
Andreas Klemm
21a37f2216 Port update after repository copy
Taken from tasic@planka.carrier.kiev.ua
+ some modifications by me
(style, patch additions to compile cleanly, pkg/*)
added convert utility to port/package to enable people
to do migrations, if needed, see the docu for details.

PR:		13716
Submitted by:	tasic@planka.carrier.kiev.ua
1999-11-10 07:37:21 +00:00
Andreas Klemm
90699d0764 Bring it back again.
Port was o.k. to get tacacs up and running using a Cisco router and
I really missed it.

- Added me as maintainer of the port
- Moved sources to my homepage download area
- Compressed sources using bzip2
- Removed some not needed variables in Makefile
- Committed with new nd5 checksum
1999-10-14 20:26:00 +00:00
Bill Fenner
94cc83be1a Delete port: tac_plus
PR:		ports/13301
Submitted by:	Igor Vinokurov <igor@rtsnet.ru>
1999-09-07 06:58:57 +00:00
Masafumi Max NAKANE
12da0f1363 - Fix problem with configuration file name in the startup script.
- Add an optional patch to change the prompt.  (Execute make with
  TAC_CHANGE_PROMPT=YES to activate.)
PR:		4105
Submitted by:	the port maintainer
1997-09-17 04:51:47 +00:00
Masafumi Max NAKANE
e632592b39 New port, tac_plus:
tac_plus provides Cisco systems routers and access servers
with authentication, authorisation and accounting services.

A configuration file controls the details of authentication,
authorisation and accounting.

PR:		2869
Submitted by:	Igor Vinokurov<igor@zynaps.ru>
Note: Although there is no terms and conditions on redistribution found,
the author says there is no restriction.  (This is stated in more
recent alpha version.)  The only concern is the U.S. Export restriction,
but Cisco has been granted with the right to export their software,
according to the author.  And also I haven't been able to find any
implementation that may violate the export control in the source code,
either.  So, I import this without any RESTRICTED or NO_CDROM defined.
1997-06-23 15:39:59 +00:00