> Once upon a time Bala Guthy shaped the electrons to say...
> > Does anyone have a hack/patch to capture the password of all
> >the users with failed logins. At present radius log contains the
>
> Not that I am aware of - and we wouldn't add something like this because
> logging passwords is adding another security risk. I don't see how it
> would help
I agree with Brian that it wouldn't be particularly useful in tracking
hackers, and that it's a security risk; however, it's a huge time
saver. I don't know how things are in the real world, but here in
Kuwait, you *cannot* simply tell a customer "you're entering the wrong
password" unless you have ten minutes to waste arguing with them about
it. When you can tell them "you need to turn off your caps lock key"
or "no, you entered abc123", they're off the phone in a flash. (I
suppose the former error, which is common, could be logged without
actually logging the password.)
-- John W. Temples, III || Providing the first public access Internet Gulfnet Kuwait || site in the Arabian Gulf region