Hello,
I'm sorry, that I ask again ..
We are using the freeradius server with authentication against ldap as
local database and proxy the realms (IPASS) to authenticate users
are not in our database.
So is is possible, to disable the password logging only for the
proxied request?
The local
Hello,
we are using the freeradius server with authentication against ldap as
local database and proxy and realms (IPASS) to authenticate users
are not in our database.
So is is possible, to disable the password logging only for the
proxied request.
The local requests are only users who got
rlm_syslog is a module I wrote based on rlm_detail. I submitted it as a
patch, but it's not part of the production freeradius code at this point.
You probably want to add the following...
around line 70:
char *hidepasswd;
around line 81-82 of rlm_detail.c:
{ hidepasswd,
I had tried that and it logged passwords regardless.
Guy Fraser wrote:
On Mon, 2006-13-03 at 17:38 +0100, andre kip wrote:
Hi Geoff,
I haven't been successful in getting freeradius not to
log passwords. Where is this rlm_syslog?? I am looking
for it at source but to no avail. ..or did you
Hi Geoff,
I haven't been successful in getting freeradius not to
log passwords. Where is this rlm_syslog?? I am looking
for it at source but to no avail. ..or did you change
rlm_detail by adding:
if ((strstr(buf, User-Password) != 0)
(strcmp(inst-hidepasswd, yes) == 0))
{
On Mon, 2006-13-03 at 17:38 +0100, andre kip wrote:
Hi Geoff,
I haven't been successful in getting freeradius not to
log passwords. Where is this rlm_syslog?? I am looking
for it at source but to no avail. ..or did you change
rlm_detail by adding:
if ((strstr(buf, User-Password) != 0)
Hi Craig!
I haven't found out where this rlm_detail module is
for logging information. Where are these files? I
guess it is not a file with *.so ending.
Trüffel
--- Craig T. Hancock [EMAIL PROTECTED] schrieb:
Alan,
When I grep the source tree for pair-attribute I
could only find
11 files
I did this for an rlm_syslog module, since I didn't want password logged in
the clear. I added a hidepasswd config option so it could be
enabled/disabled at will, but basically it's just:
if ((strstr(buf, User-Password) != 0)
(strcmp(inst-hidepasswd, yes) ==
I also want to remove the password from the log file. I am trying to
modify the rlm_detail file. I beileve the section that needs modifying
is at line 280. Before modification I just need to understand the
following lines after 280. The code with the comment
/* Don't Print passwords in old
Craig T. Hancock [EMAIL PROTECTED] wrote:
As far as what to change what is the pair-attribute
for User-Password statement. I would presume it would be
PW_PASSWORD_REQUEST.
Huh? Why?
What's wrong with using grep to search the source, to find out the
proper name?
Alan DEKok.
-
List
Craig T. Hancock [EMAIL PROTECTED] wrote:
If I had to guess (and I am somewhat guessing at this point due to my
knowledge of the Code Tree). The attribute would be PW_USER_PASSWORD.
Yes.
If you can confirm this or direct me to the source file has the
structure definitions I would
thanks Alan for your assistance so far.
Sorry for bugging you further but I still got a
question or two.
1. Where is the rlm_detail module? I only see *.so and
*.la files which seem not to be the ones. man
rlm_detail doesn't help either.
2. I managed to use encrypted passwords in the user
file.
andre kip [EMAIL PROTECTED] wrote:
1. Where is the rlm_detail module? I only see *.so and
*.la files which seem not to be the ones. man
rlm_detail doesn't help either.
Try looking at the source.
2. I managed to use encrypted passwords in the user
file. Is it possible to store encrypted
1 15:05:04 2006
User-Name = Me
##no password logging!!###
NAS-IP-Address = x.x.x.x
NAS-Identifier = ssh
NAS-Port = 424
NAS-Port-Type = Virtual
Service-Type = Authenticate-Only
Calling-Station-Id =
:
2.
Is there a way
hi!
1.
how can I stop my freeradius server from logging
entered passwords into the the accounting file?
I would like to only have the following in my file
this way:
Packet-Type = Access-Request
Wed Mar 1 15:05:04 2006
User-Name = Me
##no password logging!!###
NAS-IP
andre kip [EMAIL PROTECTED] wrote:
how can I stop my freeradius server from logging
entered passwords into the the accounting file?
It's not an accounting file. The text you quote says
Access-Request. And it isn't logged by default. You've updated
your configuration to log Access-Requests,
16 matches
Mail list logo