web/SOURCES/freeradius-Adjust-configuration-to-fit-Red-Hat-specifics.patch

From 958f470cda2ba8943f02f13d1b46f357f92d9639 Mon Sep 17 00:00:00 2001
From: Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com>
Date: Mon, 8 Sep 2014 12:32:13 +0300
Subject: [PATCH] Adjust configuration to fit Red Hat specifics

---
 raddb/mods-available/eap | 4 ++--
 raddb/radiusd.conf.in    | 7 +++----
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/raddb/mods-available/eap b/raddb/mods-available/eap
index 2621e183c..94494b2c6 100644
--- a/raddb/mods-available/eap
+++ b/raddb/mods-available/eap
@@ -533,7 +533,7 @@
			#  You should also delete all of the files
			#  in the directory when the server starts.
			#
-		#	tmpdir = /tmp/radiusd
+		#	tmpdir = /var/run/radiusd/tmp

			#  The command used to verify the client cert.
			#  We recommend using the OpenSSL command-line
@@ -548,7 +548,7 @@
			#  deleted by the server when the command
			#  returns.
			#
-		#	client = "/path/to/openssl verify -CApath ${..ca_path} %{TLS-Client-Cert-Filename}"
+		#	client = "/usr/bin/openssl verify -CApath ${..ca_path} %{TLS-Client-Cert-Filename}"
		}

		#  OCSP Configuration
diff --git a/raddb/radiusd.conf.in b/raddb/radiusd.conf.in
index a83c1f687..e500cf97b 100644
--- a/raddb/radiusd.conf.in
+++ b/raddb/radiusd.conf.in
@@ -70,8 +70,7 @@ certdir = ${confdir}/certs
 cadir   = ${confdir}/certs
 run_dir = ${localstatedir}/run/${name}

-# Should likely be ${localstatedir}/lib/radiusd
-db_dir = ${raddbdir}
+db_dir = ${localstatedir}/lib/radiusd

 #
 # libdir: Where to find the rlm_* modules.
@@ -398,8 +397,8 @@ security {
	#  member.  This can allow for some finer-grained access
	#  controls.
	#
-#	user = radius
-#	group = radius
+	user = radiusd
+	group = radiusd

	#  Core dumps are a bad thing.  This should only be set to
	#  'yes' if you're debugging a problem with the server.
--
2.13.2