How to log failed auth attempts?

Anders Holm anders.holm at sysadmin.ie
Fri Dec 19 08:16:11 CET 2008


The \'s might be significant. You have those all through the query, up  
to the point things break.

I also wouldn't have a comment in the middle of an SQL statement.

Clean it up and it is likely to work.

Sent from my iPhone

On 19 Dec 2008, at 03:29, "Todd R." <tjrlist at lightwavetech.com> wrote:

>>>>>
> What was the error message when you start with radiusd -X?
>>>>>
>
> OK, the error is:
> including configuration file /usr/local/etc/raddb/sql/mysql/ 
> dialup.conf
> /usr/local/etc/raddb/sql/mysql/dialup.conf[302]: Parse error after
> "%{reply:Packet-Type}"
> Errors reading /usr/local/etc/raddb/radiusd.conf
>
>
> Here is what my current query looks like, notice that I have the  
> line that
> works commented out:
>
> ### 
> ####################################################################
>        # Authentication Logging Queries
>
> ### 
> ####################################################################
>        # postauth_query                - Insert some info after
> authentication
>
> ### 
> ####################################################################
>
>        postauth_query = "INSERT INTO ${postauth_table} \
>                          (username, pass, reply, rejectreason,  
> authdate) \
>                          VALUES ( \
>                          '%{User-Name}', \
>                          '%{%{User-Password}:-%{Chap-Password}}', \
>                          #'%{reply:Packet-Type}', '%{reply:Reply- 
> Message}',
> '%S')"
>                          '%{reply:Packet-Type}',
> '%{Module-Failure-Message}', '%S')"
>
>
> Regards,
> Todd R.
>
>
> -----Original Message-----
> From:
> freeradius-users-bounces 
> +tjrlist=lightwavetech.com at lists.freeradius.org
> [mailto:freeradius-users-bounces+tjrlist=lightwavetech.com at lists.freeradius 
> .
> org] On Behalf Of tnt at kalik.net
> Sent: Thursday, December 18, 2008 6:06 PM
> To: FreeRadius users mailing list
> Subject: RE: How to log failed auth attempts?
>
>>>>>>
>> Just... edit the queries.  Adding %{Module-Failure-Message} to the
>> queries should get you lots of that information.
>>>>>>
>>
>> Am I suppose to put a Module name in place of "Module" or leave it  
>> as is? I
>> copied and pasted %{Module-Failure-Message} in place of
>> %{reply:Reply-Message} and I could no longer start FR.
>>
>
> What was the error message when you start with radiusd -X?
>
> Ivan Kalik
> Kalik Informatika ISP
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



More information about the Freeradius-Users mailing list