So how do you suppress

Walter Reynolds waltr at umich.edu
Thu Jun 22 20:57:39 CEST 2006 

Well that did not work.  That is what I was trying to look at the C file. 
If needed I can paste my whole config if needed, but here is that one 
section of the config:

                 suppress {
                          User-Password
                 }


Here is output form radius debug:

rad_recv: Access-Request packet from host 198.111.224.36:32798, id=106, 
length=138
         User-Name = "simple"
         User-Password = "abc123"
         NAS-IP-Address = 198.111.224.36
         Service-Type = Login-User
         Framed-IP-Address = 141.213.227.94
         Called-Station-Id = "00:07:E9:D1:8F:C2"
         Calling-Station-Id = ""
         NAS-Identifier = "wg-lab1100.ilab"
         Acct-Session-Id = "00:07:E9:D1:8F:C2:1151002507"
         NAS-Port-Type = Wireless-802.11
   Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
   modcall[authorize]: module "preprocess" returns ok for request 0
radius_xlat: 
'/usr/local/var/log/radius/radacct/198.111.224.36/auth-detail-20060622'
rlm_detail: 
/usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d 
expands to 
/usr/local/var/log/radius/radacct/198.111.224.36/auth-detail-20060622
   modcall[authorize]: module "auth_log" returns ok for request 0
     rlm_realm: No '@' in User-Name = "simple", looking up realm NULL
     rlm_realm: Found realm "NULL"
     rlm_realm: Adding Stripped-User-Name = "simple"
     rlm_realm: Proxying request from user simple to realm NULL
     rlm_realm: Adding Realm = "NULL"
     rlm_realm: Authentication realm is LOCAL.
   modcall[authorize]: module "suffix" returns noop for request 0
   rlm_eap: No EAP-Message, not doing EAP
   modcall[authorize]: module "eap" returns noop for request 0
     users: Matched entry simple at line 77
   modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns ok) for request 0
auth: type Local
auth: user supplied User-Password matches local User-Password
Login OK: [simple/abc123] (from client wg-lab1100.ilab port 0 cli )
Sending Access-Accept of id 106 to 198.111.224.36 port 32798
Finished request 0


Am I misinterpreting what tihs does or missing something?


> Date: Thu, 22 Jun 2006 19:09:22 +0200
> From: Stefan Winter <stefan.winter at restena.lu>
> Subject: Re: So how do you suppress
> To: FreeRadius users mailing list
> 	<freeradius-users at lists.freeradius.org>
> Message-ID: <200606221909.22270.stefan.winter at restena.lu>
> Content-Type: text/plain;  charset="iso-8859-1"
>
> Hi,
>
>> So how do I actually suppress the user password from the detail log based
>> on this?  Looking at the rlm_detail file and I might as well be looking at
>> a foreign language.
>
> I don't use this directive, so I might be wrong but my guess is: you don't
> need to look at the source of rlm_detail (which is indeed written in a
> foreign language, it's called "C") but have to add this directive in
> radiusd.conf, in the instances of
> detail ... {
>        ...
> 	suppress
> }
>
> If that doesn't do it, it was wrong. Then you would need to wait for someone
> with more knowledge in this list to clear things up.
>
> Greetings,
>
> Stefan Winter
>
> -- 
> Stefan WINTER
>
> Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de
> la Recherche - Ingénieur de recherche
>
> 6, rue Richard Coudenhove-Kalergi
> L-1359 Luxembourg
>
>
>
>

-- Walter Reynolds
    University of Michigan

More information about the Freeradius-Users mailing list