4 May
2006
4 May
'06
10:53 a.m.
Axel Seguin wrote:
Hi everyone,
I am using Freeradius with LDAP. I use EAP-TTLS for authentication with PAP (the passwords in LDAP being crypted). In the ldap.conf file I have :
log_auth_badpass = no log_auth_goopass = no
But I still see the user password in clear text in the auth-detail file.
I am sorry if this is a silly question but I have been trying to find a solution for quite a while now and still haven't found anything. Is it possible to make sure the passwords are not stored in the auth-detail files?
Not without source code patches. See other recent posts on the list on this subject.
Or does it have to be like this?
No. You can disable auth-detail logging. It's not enabled by default. You chose to enable it.