|author||Ruslan Ermilov <ru@FreeBSD.org>||2004-07-02 23:52:20 +0000|
|committer||Ruslan Ermilov <ru@FreeBSD.org>||2004-07-02 23:52:20 +0000|
Mechanically kill hard sentence breaks.
Notes: svn path=/head/; revision=131504
Diffstat (limited to 'lib/libradius')
1 files changed, 31 insertions, 15 deletions
diff --git a/lib/libradius/radius.conf.5 b/lib/libradius/radius.conf.5
index d5ef42de752d..6fa5cd78a587 100644
@@ -35,10 +35,12 @@
contains the information necessary to configure the RADIUS client
-library. It is parsed by
+It is parsed by
.Xr rad_config 3 .
The file contains one or more lines of text, each describing a
-single RADIUS server which will be used by the library. Leading
+single RADIUS server which will be used by the library.
white space is ignored, as are empty lines and lines containing
@@ -57,13 +59,16 @@ Timeout
-The fields are separated by white space. The
+The fields are separated by white space.
character at the beginning of a field begins a comment, which extends
-to the end of the line. A field may be enclosed in double quotes,
+to the end of the line.
+A field may be enclosed in double quotes,
in which case it may contain white space and/or begin with the
-character. Within a quoted string, the double quote character can
+Within a quoted string, the double quote character can
be represented by
.Ql \e\&" ,
and the backslash can be represented by
@@ -75,9 +80,12 @@ The first field gives the service type, either
for RADIUS authentication or
-for RADIUS accounting. If a single server provides both services, two
-lines are required in the file. Earlier versions of this file did
-not include a service type. For backward compatibility, if the first
+for RADIUS accounting.
+If a single server provides both services, two
+lines are required in the file.
+Earlier versions of this file did
+not include a service type.
+For backward compatibility, if the first
field is not
@@ -89,9 +97,11 @@ were fields two through five.
The second field specifies
the server host, either as a fully qualified domain name or as a
-dotted-quad IP address. The host may optionally be followed by a
+dotted-quad IP address.
+The host may optionally be followed by a
-and a numeric port number, without intervening white space. If the
+and a numeric port number, without intervening white space.
port specification is omitted, it defaults to the
@@ -107,21 +117,27 @@ If no such entry is present, the standard ports 1812 and 1813 are
The third field contains the shared secret, which should be known
-only to the client and server hosts. It is an arbitrary string of
+only to the client and server hosts.
+It is an arbitrary string of
characters, though it must be enclosed in double quotes if it
-contains white space. The shared secret may be
+contains white space.
+The shared secret may be
any length, but the RADIUS protocol uses only the first 128
-characters. N.B., some popular RADIUS servers have bugs which
+N.B., some popular RADIUS servers have bugs which
prevent them from working properly with secrets longer than 16
The fourth field contains a decimal integer specifying the timeout in
-seconds for receiving a valid reply from the server. If this field
+seconds for receiving a valid reply from the server.
+If this field
is omitted, it defaults to 3 seconds.
The fifth field contains a decimal integer specifying the maximum
number of attempts that will be made to authenticate with the server
-before giving up. If omitted, it defaults to 3 attempts. Note,
+before giving up.
+If omitted, it defaults to 3 attempts.
this is the total number of attempts and not the number of retries.
Up to 10 RADIUS servers may be specified for each service type.