(RADIATOR) Authlog UNKNOWN-CHAP and radpwtst question

Toni Riekkinen Sat, 09 Dec 2000 06:07:17 -0800
Authlog problem:
================

I'd like to see the password what user tries to log on with and currently I
dont get it.
Not with <AuthLog FILE> or with PasswordLogFileName:

With <AuthLog FILE> I get:
    Sat Dec  9 15:20:56 2000:testi3::FAIL

And into passwordlog with PasswordLogFileName:
    Sat Dec  9 15:20:56 2000:976368056:testi3:UNKNOWN-CHAP:rightpw:FAIL
    Sat Dec  9 15:20:56 2000:976368056:testi3:UNKNOWN-CHAP:rightpw:FAIL

I guess this is problem with NAS, but what? Authentication works just fine
so NAS does send passwords to radius... But why I can't see those, why it is
"UNKNOWN-CHAP"?


radpwtst problem:
=================

I'm using radpwtst in crontab running it every minute to check if
authentication from our Oracle -database works. The problem with this is,
that I get huge amount of accounting logs into our database for this user
radpwtst uses...

Now, how do I disable only one user's accounting information (like
ExcludeFromPasswordLog does) going to database? Must I create extra <Realm
foobar> just because of this, where is same <AuthBy SQL> refering into same
database, but empty AccountingTable, or something? How do I do this? I'm
using only <Realm DEFAULT> currently. I run this radpwtst in localhost.


----- radiusd.cfg -----
LogDir          /opt/radius/log
DbDir           /opt/radius/raddb
LogFile         %L/radiusd/%Y/%m/radiusd-%Y%m%d

Trace           3

<Client xxx.xxx.xxx.xxx>
        Secret                  xxx
        NasType                 Cisco
</Client>

# for radpwtst
<Client xxx.xxx.xxx.xxx>
        Secret                  xxx
        DupInterval             0
</Client>

<AuthLog FILE>
        Identifier              Logger
        Filename                %L/authlog
</AuthLog>

<Realm DEFAULT>
        MaxSessions             2

        AcctLogFileName         %L/detail/%Y/%m/detail-%Y%m%d
        PasswordLogFileName     %L/passwd/passwd-%Y%m%d

        ExcludeFromPasswordLog  raditesti
        AuthByPolicy            ContinueUntilAccept
        AuthLog                 Logger

        <AuthBy SQL>
        ...
        </AuthBy>

# another database:
        <AuthBy SQL>
        ...
        </AuthBy>

# and plainfile at last:
        <AuthBy FILE>
                Filename        /opt/radius/users
                NoDefault
                AddToReply      Service-Type = Framed-User, \
                                Framed-Protocol = PPP, \
                                Framed-Routing = None, \
                                Framed-MTU = 1500, \
                                Port-Limit = 2, \
                                Framed-Compression = Van-Jacobson-TCP-IP
        </AuthBy>

</Realm>
----------------

and this is trace 4 log with wrong password, there seems to be that
CHAP-Password:
----------------
Sat Dec  9 15:20:56 2000: DEBUG: Packet dump:
*** Received from xxx.xxx.xxx.xxx port 1645 ....
Code:       Access-Request
Identifier: 43
Authentic:  <236><2>L<4><230><175><143><16>n<12>ze<6><228><250>'
Attributes:
        NAS-IP-Address = xxx.xxx.xxx.xxx
        NAS-Port = 20016
        NAS-Port-Type = ISDN
        User-Name = "testi3"
        Called-Station-Id = "2889069"
        Calling-Station-Id = "0173636057"
        CHAP-Password =
<9><226>><9><158><176><192>W<10><203>m<215><22>X<143>+<160>
        Service-Type = Framed-User
        Framed-Protocol = PPP

Sat Dec  9 15:20:56 2000: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Sat Dec  9 15:20:56 2000: DEBUG:  Deleting session for testi3,
xxx.xxx.xxx.xxx, 20016
Sat Dec  9 15:20:56 2000: DEBUG: Handling with Radius::AuthSQL
Sat Dec  9 15:20:56 2000: DEBUG: Handling with Radius::AuthSQL
Sat Dec  9 15:20:56 2000: DEBUG: Query is: select accesspw from
kpy.kpy_customers where accesslogin='testi3' and parent_id='0' and (adm_end
is null or adm_end > sysdate)

Sat Dec  9 15:20:56 2000: DEBUG: Radius::AuthSQL looks for match with testi3
Sat Dec  9 15:20:56 2000: DEBUG: Radius::AuthSQL REJECT: Bad Password
Sat Dec  9 15:20:56 2000: DEBUG: Handling with Radius::AuthSQL
Sat Dec  9 15:20:56 2000: DEBUG: Handling with Radius::AuthSQL
Sat Dec  9 15:20:56 2000: DEBUG: Query is: select access_pw from
kpy.kpy_co_login where access_login='testi3'

Sat Dec  9 15:20:56 2000: DEBUG: Radius::AuthSQL looks for match with testi3
Sat Dec  9 15:20:56 2000: DEBUG: Handling with Radius::AuthFILE
Sat Dec  9 15:20:56 2000: DEBUG: Radius::AuthFILE looks for match with
testi3
Sat Dec  9 15:20:56 2000: DEBUG: Radius::AuthFILE REJECT: Bad Password
Sat Dec  9 15:20:56 2000: INFO: Access rejected for testi3: Bad Password
Sat Dec  9 15:20:56 2000: DEBUG: Packet dump:
*** Sending to xxx.xxx.xxx.xxx port 1645 ....
Code:       Access-Reject
Identifier: 43
Authentic:  <236><2>L<4><230><175><143><16>n<12>ze<6><228><250>'
Attributes:
        Reply-Message = "Request Denied"
----------------

++Toni


===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
(RADIATOR) Authlog UNKNOWN-CHAP and radpwtst question

Reply via email to
