How to log failed auth attempts?
Todd R.
tjrlist at lightwavetech.com
Fri Dec 19 18:31:24 CET 2008
The \'s were in the example file, I just left them.
Turns out that it was my comment in the middle of the SQL as you mentioned.
Weee.. Thanks, removing the comment fixed it.
I guess I just figured a comment was a comment regardless of where it was or
on what line, did not know it would be a problem.
Thanks to all that helped with this issue..
Regards,
Todd R.
-----Original Message-----
From:
freeradius-users-bounces+tjrlist=lightwavetech.com at lists.freeradius.org
[mailto:freeradius-users-bounces+tjrlist=lightwavetech.com at lists.freeradius.
org] On Behalf Of Anders Holm
Sent: Friday, December 19, 2008 1:16 AM
To: FreeRadius users mailing list
Cc: FreeRadius users mailing list
Subject: Re: How to log failed auth attempts?
The \'s might be significant. You have those all through the query, up
to the point things break.
I also wouldn't have a comment in the middle of an SQL statement.
Clean it up and it is likely to work.
Sent from my iPhone
On 19 Dec 2008, at 03:29, "Todd R." <tjrlist at lightwavetech.com> wrote:
>>>>>
> What was the error message when you start with radiusd -X?
>>>>>
>
> OK, the error is:
> including configuration file /usr/local/etc/raddb/sql/mysql/
> dialup.conf
> /usr/local/etc/raddb/sql/mysql/dialup.conf[302]: Parse error after
> "%{reply:Packet-Type}"
> Errors reading /usr/local/etc/raddb/radiusd.conf
>
>
> Here is what my current query looks like, notice that I have the
> line that
> works commented out:
>
> ###
> ####################################################################
> # Authentication Logging Queries
>
> ###
> ####################################################################
> # postauth_query - Insert some info after
> authentication
>
> ###
> ####################################################################
>
> postauth_query = "INSERT INTO ${postauth_table} \
> (username, pass, reply, rejectreason,
> authdate) \
> VALUES ( \
> '%{User-Name}', \
> '%{%{User-Password}:-%{Chap-Password}}', \
> #'%{reply:Packet-Type}', '%{reply:Reply-
> Message}',
> '%S')"
> '%{reply:Packet-Type}',
> '%{Module-Failure-Message}', '%S')"
>
>
> Regards,
> Todd R.
>
>
> -----Original Message-----
> From:
> freeradius-users-bounces
> +tjrlist=lightwavetech.com at lists.freeradius.org
>
[mailto:freeradius-users-bounces+tjrlist=lightwavetech.com at lists.freeradius
> .
> org] On Behalf Of tnt at kalik.net
> Sent: Thursday, December 18, 2008 6:06 PM
> To: FreeRadius users mailing list
> Subject: RE: How to log failed auth attempts?
>
>>>>>>
>> Just... edit the queries. Adding %{Module-Failure-Message} to the
>> queries should get you lots of that information.
>>>>>>
>>
>> Am I suppose to put a Module name in place of "Module" or leave it
>> as is? I
>> copied and pasted %{Module-Failure-Message} in place of
>> %{reply:Reply-Message} and I could no longer start FR.
>>
>
> What was the error message when you start with radiusd -X?
>
> Ivan Kalik
> Kalik Informatika ISP
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
> -
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list