Password Logging
andre kip
xu178 at yahoo.de
Fri Mar 3 10:16:10 CET 2006
thanks Alan for your assistance so far.
Sorry for bugging you further but I still got a
question or two.
1. Where is the rlm_detail module? I only see *.so and
*.la files which seem not to be the ones. man
rlm_detail doesn't help either.
2. I managed to use encrypted passwords in the user
file. Is it possible to store encrypted shared secret
both in server and client?
Thanks in advance.
Trüffle.
--- Alan DeKok <aland at ox.org> schrieb:
> andre kip <xu178 at yahoo.de> wrote:
> > how can I stop my freeradius server from logging
> > entered passwords into the the accounting file?
>
> It's not an accounting file. The text you quote
> says
> "Access-Request". And it isn't logged by default.
> You've updated
> your configuration to log Access-Requests, which
> usually isn't that
> useful.
>
> If you don't want to see the password, don't log
> Access-Requests, or
> edit the rlm_detail module to not log User-Password.
>
> > Is there a way of stopping the server from
> outputing
> > the user password
> > on debug mode??
>
> Absolutely not. This will *never* be changed.
>
> > And finally is it possible to use enycrypted
> passwords
> > in user file?
>
> Yes.
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
___________________________________________________________
Telefonate ohne weitere Kosten vom PC zum PC: http://messenger.yahoo.de
More information about the Freeradius-Users
mailing list