The Packetlogging Mechanism
The logging mechanism logs Authorisation or Accounting-Packets.
It is enabled by a commandline parameter and switched on or off by a signal.
(An other possibility would be a special Radius-Message).
Purpose
- Sometimes a user mispell his password, and the supporter wants to
prove it
- We want to experiment with a NAS and our radiusd
- ...
Usage
-L degree --plogfile file
where
- file
- the logfile where the messages should be dumped
- degree
- which messages should be written in the logfile
- ALL
- AUTH the authorisation messages
- ADMIN the messages for the admin-realm
- WRONGPW the messages with are not accepted
The signal: SIGUSR2.
The Supporters can have a programm radlogctrl which send the
radiusd this signal. This program can only called by the
Administration group and is setuid to the User which owns the radiusd.