1. Cant read radius.log (Adam Schappell)

Rui Ribeiro ruyrybeyro at gmail.com
Mon Apr 6 15:23:59 CEST 2015 

Hi all,

Adding the user freerad to www-data group won't probably help. Adding the
user www-data to freerad group, which is probably what you wanted to
suggest is also a terrible ideia from the security point of view.

You would better play with the permissions of the directory, or add the
user www-data to the adm group (also not the best of the ideas). Pick your
devil.

A better solution would probably be configure syslog to log also to another
less secure directory and configure daloradius accordingly.

Regards


> Message: 1
> Date: Mon, 6 Apr 2015 00:34:14 +0530
> From: Vijay S <vijay.hcr at gmail.com>
> To: FreeRadius users mailing list
>         <freeradius-users at lists.freeradius.org>
> Subject: Re: 1. Cant read radius.log (Adam Schappell)
> Message-ID:
>         <
> CAPTJ3-dCKGJcCu5EDB-DrRDUJ3CCBXiMJMa59Xvwg1tvkj2LXw at mail.gmail.com>
> Content-Type: text/plain; charset=UTF-8
>
> Hi
> Following command will help you add users in other group so that web server
> service owner user can read radius logs.
>
> Usermod -a -G www-data freerad
>
> Above should work on debian based distro. Else you can find the user owner
> of both web server and radius services and replace them in above command.
> On Apr 4, 2015 6:11 PM, "Rui Ribeiro" <ruyrybeyro at gmail.com> wrote:
>
> > Hi Adam,
> >
> > You have already been told Daloradius may not be the most appropriate or
> up
> > to date interface to use.
> >
> > Permissions may not be fine, and they are not certainly fine in my debian
> > for 3rd party tools to access that file. PHP/CGI processes are run under
> > the www-data user in Debian, not freerad.
> >
> > Regards
> >
> >
> >
> > > Message: 1
> > > Date: Fri, 3 Apr 2015 12:25:04 -0400
> > > From: Adam Schappell <aschappell at clearedgeit.com>
> > > To: FreeRadius users mailing list
> > >         <freeradius-users at lists.freeradius.org>
> > > Subject: Cant read radius.log
> > > Message-ID:
> > >         <
> > > CAHoRX4Kj9u29QAUeL3_dxUmO_P6JVgunA+ybWcZd8KGUZrq_kQ at mail.gmail.com>
> > > Content-Type: text/plain; charset=UTF-8
> > >
> > > Hello,
> > >
> > > In dalo radius I get the error: error reading log file:
> > >
> > > looked for log file in '/var/log/freeradius/radius.log,
> > > /usr/local/var/log/radius/radius.log, /var/log/radius/radius.log' but
> > > couldn't find it.
> > > if you know where your freeradius log file is located, set it's
> location
> > in
> > > /daloradius/rep-logs-radius.php
> > >
> > > I go through the file system and can find it at
> > /var/log/radius/radius.log.
> > > Weird thing is that if I just keep pressing tab it wont pick it up. I
> > have
> > > to stop at the radius/ and type ll and it will come up. Permissions
> seem
> > > fine. Cant really figure out why. And in the
> > > /daloradius/rep-logs-radius.php, there is no where to set a path.
> > >
> > > Thanks.
> > >
> > >
> > >
> > >
> >
> > --
> > Regards,
> >
> > --
> > Rui Ribeiro
> > Senior Sysadm
> > ISCTE-IUL
> > https://www.linkedin.com/pub/rui-ribeiro/16/ab8/434
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
>
>
-- 
Regards,

--
Rui Ribeiro
Senior Sysadm
ISCTE-IUL
https://www.linkedin.com/pub/rui-ribeiro/16/ab8/434

More information about the Freeradius-Users mailing list