The world's most popular RADIUS Server.The FreeRADIUS Project
FreeRADIUS includes a RADIUS server, a BSD licensed client library, a PAM library, and an Apache module. In most cases, the word FreeRADIUS refers to the RADIUS server.
FreeRADIUS is the most widely deployed RADIUS server in the world. It is the basis for multiple commercial offerings. It supplies the AAA needs of many Fortune-500 companies and Tier 1 ISPs. It is also widely used in the academic community, including eduroam. The server is fast, feature-rich, modular, and scalable.
The server has reached a stable Version 2.0.4 (sig) , with incremental improvements added in every release.
Recent News
2008.05.13 A security bug in OpenSSL on Debian or Ubuntu systems may affect FreeRADIUS on those systems. We recommend that everyone using Debian or Ubuntu upgrade their PpenSSL packages immediately. Any certificates created on those systems since 2006 should also be re-generated.
2008.04.30 Version 2.0.4 (sig) has been released. The focus of this release is stability.
Feature Improvements
- Allow "virtual_server" in "realm" and "home_server" sections. See raddb/proxy.conf and raddb/sites-available/virtual.example.com.
- Allow "passwd" module to be listed in "accounting" and "post-auth".
- Added "fallback" to "home_server_pool" configuration, to handle the case of all home servers being dead. See raddb/proxy.conf.
- Added sample text to raddb/sites-available/inner-tunnel which can simplify debugging of inner tunnel configurations.
- Added regular expression matching in realm names. See raddb/proxy.conf for examples.
- Added simple DHCP server functionality. For comments, see raddb/sites-available/dhcp.
- Added file globbing capabilities to detail file reader
- Added sample raddb/sites-available/robust-proxy-accounting.
- Clients in SQL can now refer to a virtual server. Patch from Michael Bretterklieber.
- Added some examples of creating RADIUS administrator in SQL, and assigning appropriate access rights.
Bug Fixes
- Install all files in raddb/sites-available.
- Allow non-threaded builds.
- Don't treat '0x' as special for known attributes that are not of type "octets".
- Fix log error in rlm_pap.
- Remove documentation about non-existent functionality.
- Updated warning messages in debug output.
- Fix handling of timeouts in rlm_ldap that affected 64-bit systems. This fix was supposed to go into 2.0.3, but did not make it.
- Fix event handling in debug mode for failed proxy requests.
- Fix memleak in fifos. Closes bug #537.
- Fix memleak on blocked threads. Closes bug #538.
- Perform additional checks on NULL realms. Closes bug #541.
- Fix handling of "clients" in "listen" section.
- When detail file cannot process a packet, sleep for longer to let the rest of the server do something.
- Add missing table to raddb/sql/mssql/schema.sql. Closes bug #545.
- Updated rlm_sql_postgresql to build with PostgreSQL 7.x. Closes bug #533.
- Fix "postauth" of rlm_ldap to look for LDAP-UserDn in the correct place.
- Update rlm_attr_filter for some corner cases. Closes bug #543.
- Fixed memory leak in libfreeradius event handler.
- In the SQL Accounting on/off queries, remove the restriction that the session time had to be zero.
2008.03.05 FreeRADIUS Client Version 1.1.6 (sig) has been released. The focus of this release is stability.
- Added dead_time functionality / configuration.
- Merge in fixes and enhancements from 'radiusclient-ng'.
- Improved functionality for embedded operation. In use in FreeSWITCH and OpenSER projects.
- Wrap gethostby*() family of calls with threadsafe variants.
- Change UINT4 to uint32_t, int to size_t, etc.
- Fixed wrong usage of strncat function in several places.
2007.12.01 - A Development Roadmap is announced
As part of the continued growth of the server, we are actively looking for sponsors for new features. New projects include support for WiMAX, 3GPP2, Change of Authorization (CoA), Windows ports, etc.