dailup admin and badusers

Kostas Kalevras kkalev at noc.ntua.gr
Sat Dec 30 00:31:13 CET 2006


jerrrry at voila.fr wrote:

> hi,
>
> i don't understand why dialup admin need its own sql table "badusers" 
> and a script to get bad logins whereas rejected users can be found in 
> the freeradius table "radpostauth" ?
>
badusers serves a completely different purpose. As for log_badlogins:
1. It was created before post-auth functionality was added in rlm_sql
2. It's able to store records in the radacct table in a convenient 
format for dialupadmin to show bad logins
3. It's able of sending bad login information to other sql servers using 
a buffer file, which is convenient to keep bad login information within 
a replicated infrastructure.

Having a freeradius attribute Reject-Reson which could hold values such 
as Multiple-Login,Invaling-User,Outside-Timestamp and freeradius setting 
it on reject would be a step forward though.

> Regards,
>
> Thomas
>
>------------------------------------------------------------------------
>
>- 
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>




More information about the Freeradius-Users mailing list