Well that did not work. That is what I was trying to look at the C file.
If needed I can paste my whole config if needed, but here is that one
section of the config:
suppress {
User-Password
}
Here is output form radius debug:
rad_recv: Access-Request packet from host 198.111.224.36:32798, id=106,
length=138
User-Name = "simple"
User-Password = "abc123"
NAS-IP-Address = 198.111.224.36
Service-Type = Login-User
Framed-IP-Address = 141.213.227.94
Called-Station-Id = "00:07:E9:D1:8F:C2"
Calling-Station-Id = ""
NAS-Identifier = "wg-lab1100.ilab"
Acct-Session-Id = "00:07:E9:D1:8F:C2:1151002507"
NAS-Port-Type = Wireless-802.11
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
modcall[authorize]: module "preprocess" returns ok for request 0
radius_xlat:
'/usr/local/var/log/radius/radacct/198.111.224.36/auth-detail-20060622'
rlm_detail:
/usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
expands to
/usr/local/var/log/radius/radacct/198.111.224.36/auth-detail-20060622
modcall[authorize]: module "auth_log" returns ok for request 0
rlm_realm: No '@' in User-Name = "simple", looking up realm NULL
rlm_realm: Found realm "NULL"
rlm_realm: Adding Stripped-User-Name = "simple"
rlm_realm: Proxying request from user simple to realm NULL
rlm_realm: Adding Realm = "NULL"
rlm_realm: Authentication realm is LOCAL.
modcall[authorize]: module "suffix" returns noop for request 0
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 0
users: Matched entry simple at line 77
modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns ok) for request 0
auth: type Local
auth: user supplied User-Password matches local User-Password
Login OK: [simple/abc123] (from client wg-lab1100.ilab port 0 cli )
Sending Access-Accept of id 106 to 198.111.224.36 port 32798
Finished request 0
Am I misinterpreting what tihs does or missing something?
Date: Thu, 22 Jun 2006 19:09:22 +0200
From: Stefan Winter <[EMAIL PROTECTED]>
Subject: Re: So how do you suppress
To: FreeRadius users mailing list
<[email protected]>
Message-ID: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="iso-8859-1"
Hi,
So how do I actually suppress the user password from the detail log based
on this? Looking at the rlm_detail file and I might as well be looking at
a foreign language.
I don't use this directive, so I might be wrong but my guess is: you don't
need to look at the source of rlm_detail (which is indeed written in a
foreign language, it's called "C") but have to add this directive in
radiusd.conf, in the instances of
detail ... {
...
suppress
}
If that doesn't do it, it was wrong. Then you would need to wait for someone
with more knowledge in this list to clear things up.
Greetings,
Stefan Winter
--
Stefan WINTER
Fondation RESTENA - R?seau T?l?informatique de l'Education Nationale et de
la Recherche - Ing?nieur de recherche
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
-- Walter Reynolds
University of Michigan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
