Bug 829237 - /etc/raddb/modules/ldap.rpmnew will be created by an update leading to unexpected ldap module configurtaion
/etc/raddb/modules/ldap.rpmnew will be created by an update leading to unexpe...
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: freeradius2 (Show other bugs)
Unspecified Unspecified
unspecified Severity medium
: rc
: ---
Assigned To: John Dennis
BaseOS QE Security Team
Depends On:
  Show dependency treegraph
Reported: 2012-06-06 05:52 EDT by Christoph Szeppek
Modified: 2013-11-01 13:52 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2013-11-01 13:52:03 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Christoph Szeppek 2012-06-06 05:52:15 EDT
Description of problem:
There was an update of freeradius2-ldap. During the update process, /etc/raddb/modules/ldap.rpmnew was created which was evaluated after a restart of radiusd. ldap.rpmnew was evaluated after ldap which overwrites the site specific configuration.

Version-Release number of selected component (if applicable):
freeradius2-ldap.x86_64 2.1.12-3.el5

How reproducible:

Steps to Reproduce:
1. update to freeradius2-ldap.x86_64 2.1.12-3.el5
Actual results:
There will be a new ldap module config file named /etc/raddb/modules/ldap.rpmnew which overrides the configuration defined in /etc/raddb/modules/ldap.

Expected results:
- No change in the existing configuration

Additional info:
My solution was to delete /etc/raddb/modules/ldap.rpmnew.

One could exclude /etc/raddb/modules/*.rpmnew from the radius configuration loading process to avoid this kind of problem in the future.
Comment 1 Christoph Szeppek 2012-06-06 08:39:48 EDT
this is a duplicate of 804932
Comment 2 John Dennis 2013-11-01 13:48:48 EDT
Please see the additional discussion in bug #804932.

This issue is fixed in FreeRADIUS versions >= 2.2.0, the server will ignore certain well known files (including .rpmnew and .rpmsave as well as Debian package files, ~ appended files, etc.).

In general we suggest after applying updates the admin should check for the presence of .rpmnew and .rpmsave files and resolve them.
Comment 3 John Dennis 2013-11-01 13:52:03 EDT
This Bugzilla has been reviewed by Red Hat and is not planned on being
addressed in Red Hat Enterprise Linux 5, and therefore will be closed.
If this bug is critical to production systems, please contact your Red
Hat support representative and provide sufficient business

Note You need to log in before you can comment on or make changes to this bug.