auth log ${user} with show password when enable
15 views
Skip to first unread message
codcodoe
Jun 23, 2024, 9:48:34 PM (11 days ago) Jun 23
to Event-Driven Servers
Hi everyone,
Any one know how to filter log when enable user will show password in log
user=abc\000abc@1234
Marc Huber
Jun 24, 2024, 10:48:27 AM (10 days ago) Jun 24
to event-driv...@googlegroups.com
Hi,
thanks for reporting this. You're using the "augmented enable" feature,
aren't you? f59d3c48e29615fed0fb824e352afcda4298c030 should fix this issue.
Cheers,
Marc
On 24.06.2024 03:48, codcodoe wrote:
> Hi everyone,
> Any one know how to filter log when enable user will show password in log
> *user=abc\000abc@1234*
> msgid=AUTHCPASS
> --
> You received this message because you are subscribed to the Google
> Groups "Event-Driven Servers" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to event-driven-ser...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/event-driven-servers/c7010f8e-9acc-42fa-b050-348f8ae735fbn%40googlegroups.com
> <https://groups.google.com/d/msgid/event-driven-servers/c7010f8e-9acc-42fa-b050-348f8ae735fbn%40googlegroups.com?utm_medium=email&utm_source=footer>.
thanks for reporting this. You're using the "augmented enable" feature,
aren't you? f59d3c48e29615fed0fb824e352afcda4298c030 should fix this issue.
Cheers,
Marc
On 24.06.2024 03:48, codcodoe wrote:
> Hi everyone,
> Any one know how to filter log when enable user will show password in log
>
> Jun 21 14:30:42 tacacs-plus-server tacplus[9630]: 2024-06-21 14:30:42
> +0800 nas=XXX.XXX.XXX.XXX device.address=
> XXX.XXX.XXX.XXX server.address= XXX.XXX.XXX.XXX
> *user=abc\000abc@1234* port=tty10 device.port=tty10
> Jun 21 14:30:42 tacacs-plus-server tacplus[9630]: 2024-06-21 14:30:42
> +0800 nas=XXX.XXX.XXX.XXX device.address=
> XXX.XXX.XXX.XXX server.address= XXX.XXX.XXX.XXX
> nac=172.29.195.1 client= host=dlink
> device.name=tacacs-plus-server action=enable login
> hint=succeeded profile=admin result=permit service=
> cmd= args= identity-source=1 realm=cht
> rule=from-dlink authen-method= authen-type=ascii
> *authen-service=enable * authen-action=login priv-lvl=15
> device.name=tacacs-plus-server action=enable login
> hint=succeeded profile=admin result=permit service=
> cmd= args= identity-source=1 realm=cht
> rule=from-dlink authen-method= authen-type=ascii
> msgid=AUTHCPASS
> --
> You received this message because you are subscribed to the Google
> Groups "Event-Driven Servers" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to event-driven-ser...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/event-driven-servers/c7010f8e-9acc-42fa-b050-348f8ae735fbn%40googlegroups.com
> <https://groups.google.com/d/msgid/event-driven-servers/c7010f8e-9acc-42fa-b050-348f8ae735fbn%40googlegroups.com?utm_medium=email&utm_source=footer>.
codcodoe
Jun 24, 2024, 8:50:04 PM (10 days ago) Jun 24
to Event-Driven Servers
Hi
Marc,
Thank you for your help.
I use
"augmented enable" feature, and the issue fixed after get the fix
f59d3c48e29615fed0fb824e352afcda4298c030
Marc Huber 在 2024年6月24日 星期一晚上10:48:27 [UTC+8] 的信中寫道:
Reply all
Reply to author
Forward
0 new messages