diff options
author | Jose Luis Duran <jlduran@users.noreply.github.com> | 2015-11-21 22:10:58 -0200 |
---|---|---|
committer | Jose Luis Duran <jlduran@users.noreply.github.com> | 2015-11-21 22:30:13 -0200 |
commit | 53e8d0a33d09ffc08e07b4caa46f65253ddbc122 (patch) | |
tree | 2895059778d8a152433b1c4e61d83356ed121464 /src | |
parent | ea792608e8aab65bdb8635783a394c17de5ddd17 (diff) | |
download | pfsense-53e8d0a33d09ffc08e07b4caa46f65253ddbc122.zip pfsense-53e8d0a33d09ffc08e07b4caa46f65253ddbc122.tar.gz |
Escape RADIUS secret in strongswan.conf
If a RADIUS secret is, for example, `#secret-key#`, EAP-RADIUS
authentication will fail, as the `#` can be interpreted by the
strongswan.conf parser as a comment.
To avoid this from happening, set the key within double quotes.
Diffstat (limited to 'src')
-rw-r--r-- | src/etc/inc/vpn.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/etc/inc/vpn.inc b/src/etc/inc/vpn.inc index 0f9689f..937aba1 100644 --- a/src/etc/inc/vpn.inc +++ b/src/etc/inc/vpn.inc @@ -504,7 +504,7 @@ EOD; $radius_server_txt .= <<<EOD {$nice_user_source} { address = {$auth_server['host']} - secret = {$auth_server['radius_secret']} + secret = "{$auth_server['radius_secret']}" auth_port = {$auth_server['radius_auth_port']} acct_port = {$auth_server['radius_acct_port']} } |