radpostauth sql logging of bad passwords

Ivan Kalik tnt at kalik.net
Mon Apr 27 20:44:35 CEST 2009


>
> On 2009-Apr-27, at 11:27, Alan DeKok wrote:
>
>> Guy Fraser wrote:
>>> I am obviously missing something.

Ahem, did you read what sql_log does?

>>>
>>> I tried commenting out that section and it did not work I then
>>> changed
>>> it to :
>>
>>  So... what happens?
>
> As far as I could tell nothing changed when I commented out the REJECT
> section :
>
> post-auth {
> 	reply_log
> 	sql
> 	sql_log
> 	exec
> #	Post-Auth-Type REJECT {
> #		attr_filter.access_reject
> #	}
> }

Leave reject filter alone.

>
> And I still do not get any failed authentications when I use :
>
> post-auth {
> 	reply_log
> 	sql
> 	sql_log
> 	exec
> 	Post-Auth-Type REJECT {
> 		sql_log
> 	}
> }


List sql instead of sql_log. And put the filter back.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list