Trouble Logging bad passwords

timradius at ykwc.com timradius at ykwc.com
Fri Jul 10 01:44:13 CEST 2015


Hello, I am trying to log incorrect password attempts, and am having 
trouble.

I have log_auth_badpass enabled in my radiusd.conf file:
log_auth = yes
log_auth_badpass = yes

I am using eap-peap  with mschapv2 for security and I am using cleartext 
passwords

I have sql logging for rejected logins logged to the radpostauth table, 
and here it what it shows:

id   username        pass       reply        authdate
61831 | 2001an     |        | Access-Reject | 2015-07-09 16:06:56 |
| 61841 | 1201gest   |        | Access-Reject | 2015-07-09 16:07:17 |
| 61851 | 1201gest   |        | Access-Reject | 2015-07-09 16:07:17 |
| 61861 | culverbha  |        | Access-Reject | 2015-07-09 16:07:30 |


And I am logging the sql requests as well in 
/var/log/radius/sqltrace.sql which shows:

INSERT INTO radpostauth   (username, pass, reply, authdate)        
VALUES (                           '2001a', '','Access-Accept', 
'2015-07-07 11:21:05');


Which just shows a '' being inserted into "pass", which is what I am 
seeing of course. Is there a flag I need to set to get this to work with 
my security setttings

What I am ultimately trying to do is find a way to get into an access 
point that has an incorrect secret, at this point I am completely locked 
out when the secret is incorrect.

Any suggestions, pointers or would be greatly appreciated!
Tim


More information about the Freeradius-Users mailing list