log failed logins

Cory Robson cory at cmi.net.au
Wed Jan 24 04:04:25 CET 2007


Only problem though is I only use PAP.
I'm more interested in the syntax of the sql logs though.


-----Original Message-----
From: freeradius-users-bounces+cory=cmi.net.au at lists.freeradius.org
[mailto:freeradius-users-bounces+cory=cmi.net.au at lists.freeradius.org] On
Behalf Of James Wakefield
Sent: Wednesday, 24 January 2007 11:39 AM
To: FreeRadius users mailing list
Subject: Re: log failed logins

Cory Robson wrote:
> I have the following sql in my sql conf file and this is working.
> 
> My only gripe is if there is no info provided then what gets placed in the
> log. It appears in the case of User-Password that a default of
Chap-Password
> is entered as per below.
> 

G'day Cory,

In CHAP, the password never goes over the wire (which is its so-called 
benefit - I think "Challenge-Response Authentication Protocol" would 
make for a more appropriate acronym), so freeradius has no idea what the 
end user entered, only that the challenge-response process failed. 
Chap-Password indicates this.

Cheers,
-- 
James Wakefield,
Unix Administrator, Information Technology Services Division
Deakin University, Geelong, Victoria 3217 Australia.

Phone: 03 5227 8690 International: +61 3 5227 8690
Fax:   03 5227 8866 International: +61 3 5227 8866
E-mail:   james.wakefield at deakin.edu.au
Website:  http://www.deakin.edu.au
- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html

__________ NOD32 2000 (20070123) Information __________

This message was checked by NOD32 antivirus system.
http://www.eset.com





More information about the Freeradius-Users mailing list