Project

General

Profile

Bug #4497

Using a specific password within FreeRADIUS user management causes pfSense to restore a backup!

Added by Matthias Güntert about 4 years ago. Updated over 3 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
FreeRADIUS
Target version:
-
Start date:
03/07/2015
Due date:
% Done:

0%

Estimated time:
Affected Version:
All
Affected Architecture:
amd64

Description

I have noticed some really strange behaviour when using a specific password for a freeradius user account. Somehow I can't use the password 'W!f!4c3ss.' (without the quotes).

Everytime I enter the mentioned password and click on save the WebGUI shows "01 unread notice" - "Acknowledge All Notices" - "[pfSense is restoring the configuration /cf/conf/backup/config-1425739xxxx.xml]". The changes are then not getting applied (checked within /usr/pbi/freeradius-amd64/local/etc/raddb/users). Every other password works. I guess there is something wrong with the way the input gets parsed.

This seems independent of the browser in use. Tested with Chrome (40.0.2214.115 m) and Internet Explorer 11 (11.0.9600.17631).

History

#1 Updated by Paul K about 4 years ago

I tried to reproduce this using the password you provided, but it worked just fine. Then I noticed that your last name contains umlaut so I tried to create user with username Güntert and sure enough it failed.

#2 Updated by Matthias Güntert about 4 years ago

The user for which I have set this password does not contain any umlauts!

#3 Updated by Chris Buechler over 3 years ago

  • Affected Version changed from 2.2 to All

Also available in: Atom PDF