Greetings FR-users, Reading through the documentation at: http://wiki.freeradius.org/list-help It states to include the full output of radiusd -X. I do believe that the full output includes sensitive information, like passwords, that should not be posted to the mailing list. What do folks think about replacing sensitive information in the output with "removed" or "sensitive data removed", etc? Personally, I think -X could use this new mode by default, and also add an option to not remove sensitive info. The new behavior could be: radiusd -X # no sensitive data leaked radiusd -X --include-sensitive # sensitive data included Alternatively, if you don't want to change the workings of -X, then perhaps add a new option that mimics -X but removes sensitive information. You could copy ssh (-X vs -Y) and choose -Y. radiusd -X # no change - same as today radiusd -Y # just like current -X, but no sensitive data Then advertise radiusd -Y in the wiki if the wiki is going to recommend users post the full output of their radiusd in debug. Just some thoughts. Have a good day! -m
On Dec 1, 2020, at 10:13 AM, Matt Zagrabelny via Freeradius-Users <freeradius-users@lists.freeradius.org> wrote:
Reading through the documentation at:
http://wiki.freeradius.org/list-help
It states to include the full output of radiusd -X. I do believe that the full output includes sensitive information, like passwords, that should not be posted to the mailing list.
Some of the sensitive information is removed, like shared secrets. Other than that, it's difficult to know what's sensitive and what isn't. User-Password is simple perhaps. But there are many protocols used in FreeRADIUS, each of which has their own issues. Should the MS-CHAP data be omitted? If so, what about EAP-MSCHAP?
What do folks think about replacing sensitive information in the output with "removed" or "sensitive data removed", etc?
Personally, I think -X could use this new mode by default, and also add an option to not remove sensitive info.
I'm fine with removing sensitive data. The questions are: a) what is sensitive b) how do you remove it. These issues aren't trivial. I suggest attempting to make a patch which is both understandable, and works. The process will be educational. Alan DeKok.
On Dec 1, 2020, at 4:30 PM, Benny Pedersen via Freeradius-Users <freeradius-users@lists.freeradius.org> wrote:
Matt Zagrabelny via Freeradius-Users skrev den 2020-12-01 16:13:
Just some thoughts.
maybe passwords should only be exposed in --debug ?
so if only -X is used its hidded
It's not too difficult to add hiding of User-Password when "-X" is used. It's likely not trivial, but it's not impossible. Adding hiding of anything else is much much more difficult. Alan DeKok.
participants (3)
-
Alan DeKok -
Benny Pedersen -
Matt Zagrabelny