ERROR("Setting \"require_message_authenticator = false\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
ERROR("UPGRADE THE CLIENT AS YOUR NETWORK IS VULNERABLE TO THE BLASTRADIUS ATTACK.");
- ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for this client.");
+ ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
client->require_ma = FR_BOOL_FALSE;
ERROR("BlastRADIUS check: Received packet with Message-Authenticator.");
ERROR("Setting \"require_message_authenticator = true\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
- ERROR("It looks like the client has been uppdated to protect from the BlastRADIUS attack.");
- ERROR("Please set \"require_message_authenticator = true\" for this client.");
+ ERROR("It looks like the client has been updated to protect from the BlastRADIUS attack.");
+ ERROR("Please set \"require_message_authenticator = true\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
client->require_ma = FR_BOOL_TRUE;
DEBUG("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
DEBUG("The packet does not contain Message-Authenticator, which is a security issue");
DEBUG("UPGRADE THE CLIENT AS YOUR NETWORK IS VULNERABLE TO THE BLASTRADIUS ATTACK.");
- DEBUG("Once the client is upgraded, set \"require_message_authenticator = true\" for this client.");
+ DEBUG("Once the client is upgraded, set \"require_message_authenticator = true\" for client %s", client->shortname);
DEBUG("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
return;
}
ERROR("Setting \"limit_proxy_state = false\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
ERROR("UPGRADE THE CLIENT AS YOUR NETWORK IS VULNERABLE TO THE BLASTRADIUS ATTACK.");
- ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for this client.");
+ ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for client %s", client->shortname);
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
client->limit_proxy_state = FR_BOOL_FALSE;
if (!packet->message_authenticator) {
ERROR("The packet does not contain Message-Authenticator, which is a security issue.");
ERROR("UPGRADE THE CLIENT AS YOUR NETWORK MAY BE VULNERABLE TO THE BLASTRADIUS ATTACK.");
- ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for this client.");
+ ERROR("Once the client is upgraded, set \"require_message_authenticator = true\" for client %s", client->shortname);
} else {
ERROR("The packet contains Message-Authenticator.");
if (!packet->eap_message) ERROR("The client has likely been upgraded to protect from the attack.");
- ERROR("Please set \"require_message_authenticator = true\" for this client");
+ ERROR("Please set \"require_message_authenticator = true\" for client %s", client->shortname);
}
ERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
}
RERROR("Setting \"require_message_authenticator = false\" for home_server %s", request->home_server->name);
RERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
RERROR("UPGRADE THE HOME SERVER AS YOUR NETWORK IS VULNERABLE TO THE BLASTRADIUS ATTACK.");
- RERROR("Once the home_server is upgraded, set \"require_message_authenticator = true\" for this home_server.");
+ RERROR("Once the home_server is upgraded, set \"require_message_authenticator = true\" for home_server %s.", request->home_server->name);
RERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
request->home_server->require_ma = FR_BOOL_FALSE;
RERROR("BlastRADIUS check: Received response to Access-Request with Message-Authenticator.");
RERROR("Setting \"require_message_authenticator = true\" for home_server %s", request->home_server->name);
RERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
- RERROR("It looks like the home server has been uppdated to protect from the BlastRADIUS attack.");
- RERROR("Please set \"require_message_authenticator = true\" for this home_server.");
+ RERROR("It looks like the home server has been updated to protect from the BlastRADIUS attack.");
+ RERROR("Please set \"require_message_authenticator = true\" for home_server %s", request->home_server->name);
RERROR("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
request->home_server->require_ma = FR_BOOL_TRUE;
RDEBUG("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
RDEBUG("The packet does not contain Message-Authenticator, which is a security issue");
RDEBUG("UPGRADE THE HOME SERVER AS YOUR NETWORK IS VULNERABLE TO THE BLASTRADIUS ATTACK.");
- RDEBUG("Once the home server is upgraded, set \"require_message_authenticator = true\" for this home_server.");
+ RDEBUG("Once the home server is upgraded, set \"require_message_authenticator = true\" for home_server %s", request->home_server->name);
RDEBUG("!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!");
}
}
projects / thirdparty / freeradius-server.git / commitdiff
